CVE-2024-20357
- EPSS 0.21%
- Published 01.05.2024 17:15:28
- Last modified 21.11.2024 08:52:27
A vulnerability in the XML service of Cisco IP Phone firmware could allow an unauthenticated, remote attacker to initiate phone calls on an affected device. This vulnerability exists because bounds-checking does not occur while parsing XML reque...
CVE-2024-20376
- EPSS 0.35%
- Published 01.05.2024 17:15:28
- Last modified 21.11.2024 08:52:29
A vulnerability in the web-based management interface of Cisco IP Phone firmware could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a DoS condition. This vulnerability is due to insufficient valid...
CVE-2024-20378
- EPSS 0.43%
- Published 01.05.2024 17:15:28
- Last modified 21.11.2024 08:52:30
A vulnerability in the web-based management interface of Cisco IP Phone firmware could allow an unauthenticated, remote attacker to retrieve sensitive information from an affected device. This vulnerability is due to a lack of authentication for...
CVE-2023-20221
- EPSS 0.39%
- Published 16.08.2023 22:15:11
- Last modified 21.11.2024 07:40:55
A vulnerability in the web-based management interface of Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against a user of th...
CVE-2020-3111
- EPSS 0.23%
- Published 05.02.2020 18:15:10
- Last modified 21.11.2024 05:30:20
A vulnerability in the Cisco Discovery Protocol implementation for the Cisco IP Phone could allow an unauthenticated, adjacent attacker to remotely execute code with root privileges or cause a reload of an affected IP phone. The vulnerability is due ...