Overview
- Description
- A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote attacker to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of proper input validation of HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web server of a targeted device. A successful exploit could allow the attacker to remotely execute code with root privileges or cause a reload of an affected IP phone, resulting in a DoS condition.
- Source
- ykramarz@cisco.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 3.0
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Primary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
Known exploits
Data from CISA
- Vulnerability name
- Cisco IP Phones Web Server Remote Code Execution and Denial-of-Service Vulnerability
- Exploit added on
- Nov 3, 2021
- Exploit action due
- May 3, 2022
- Required action
- Apply updates per vendor instructions.
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8865_firmware:10.3\\(1\\)es14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F84C7842-0D6A-4950-AC9B-63602140BAF1"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8865_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "144FA4D4-61A7-454F-9373-F91548E4B8AE"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8865_firmware:11.0\\(5\\)sr1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85C8430D-496C-44CA-AA95-6448F3459373"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_8865:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "BB99B9AB-64B5-4989-9579-A1BB5D2D87EF"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8851_firmware:10.3\\(1\\)es14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5800EBC5-4C54-46E9-B742-A49EE6D57A32"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8851_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BB5548D1-7E70-4E75-B0FC-FC390B858612"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8851_firmware:11.0\\(5\\)sr1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "07844DC0-2E7A-4540-897D-C4E2B440C4EB"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_8851:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8AF6DC5E-F582-445E-BF05-2D55A0954663"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_7841_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1617D281-505F-49D2-AAAB-91D61F7D4797"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_7841:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "73CF8A50-11BD-4506-BF2A-CCA36BF59EFF"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_7821_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B552853A-14E0-4339-A87E-7AE00BF143EA"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_7821:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "AE7AFFF0-5B21-400B-B923-E9B7FCCE08FA"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8811_firmware:10.3\\(1\\)es14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8260121F-1819-40ED-A3CC-86A98B84CF13"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8811_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2404681B-34F2-4F60-AE8B-1A41E2FCFB68"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8811_firmware:11.0\\(5\\)sr1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D7BDE345-B411-4A8B-A6A6-A031C52E2844"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_8811:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D0CC3127-3152-4906-9FE0-BC6F21DCADAA"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8861_firmware:10.3\\(1\\)es14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D1350005-A1E5-4794-B853-9DB3494C3B78"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8861_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F5E2CDC1-4031-4F88-94C2-4AA7AC112D87"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8861_firmware:11.0\\(5\\)sr1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "228ADA90-87B0-4BBF-A7CB-ABDC2509E5A7"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_8861:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "090EE553-01D5-45F0-87A4-E1167F46EB77"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8845_firmware:10.3\\(1\\)es14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "363E47B4-E22B-4A8A-92CD-1ACDB2CF6CD5"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8845_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B41E93DB-62E6-4AFB-8C72-44C51E1CB1E7"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8845_firmware:11.0\\(5\\)sr1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "16218F2F-0889-437D-A8C4-EFC7C197C19A"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_8845:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A313E64A-F43C-4FBA-A389-6171CBD709C0"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_7861_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5E2460C9-F9C8-4436-BD8E-3FDD8978E8C8"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_7861:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E52C420C-FD54-4BE4-8720-E05307D53520"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8841_firmware:10.3\\(1\\)es14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B73D3CF0-E2A3-4A76-82D8-3C899B41BA11"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8841_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E719FD30-98C0-4582-8ED5-DDBA01CCC055"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8841_firmware:11.0\\(5\\)sr1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6528A512-7359-4F95-9BD4-0083524F9125"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_8841:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7944CC9C-AE08-4F30-AF65-134DADBD0FA1"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_7811_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6D715BDD-D977-4581-BA09-A2936991CFA7"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_7811:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D7260C17-7067-47AD-995F-366A5E8B10E7"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8821_firmware:10.3\\(1\\)es14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AA6858D1-20BC-417A-9328-196798A23B48"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8821_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9E4622EF-D5CA-4971-A3A7-0610C136F160"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8821_firmware:11.0\\(5\\)sr1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2740B39B-ADD1-4CD9-BEF8-FFBDEA1567F0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_8821:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "36C99E0B-0383-4CB3-B325-EC0F3D57D39D"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8821-ex_firmware:10.3\\(1\\)es14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A3783AE8-6B80-4DC4-8525-84E63D50DAAC"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8821-ex_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FFC9FAB0-B9A7-476A-AAF0-A4B14FC48CF2"
},
{
"criteria": "cpe:2.3:o:cisco:ip_phone_8821-ex_firmware:11.0\\(5\\)sr1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E6745422-3CE4-41A0-A87E-BD9C5DA45BF2"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:ip_phone_8821-ex:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "EE56B858-B59D-4197-9B2A-33A03908B967"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:8831_firmware:10.3\\(1\\)es14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9F731586-5715-45FA-AB4D-7301D15DFB60"
},
{
"criteria": "cpe:2.3:o:cisco:8831_firmware:11.0\\(1\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "188DB874-2611-4919-A2E0-A955852AB424"
},
{
"criteria": "cpe:2.3:o:cisco:8831_firmware:11.0\\(5\\)sr1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DAD76AAB-7FD9-4F31-87C2-899128A1943E"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:8831:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "BE2514A1-486C-40F7-8746-56E2B973CBE6"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]