cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-1635,https://securityvulnerability.io/vulnerability/CVE-2019-1635,Cisco IP Phone 7800 Series and 8800 Series Session Initiation Protocol XML Denial of Service Vulnerability,"A vulnerability in the call-handling functionality of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to cause an affected phone to reload unexpectedly, resulting in a temporary denial of service (DoS) condition. The vulnerability is due to incomplete error handling when XML data within a SIP packet is parsed. An attacker could exploit this vulnerability by sending a SIP packet that contains a malicious XML payload to an affected phone. A successful exploit could allow the attacker to cause the affected phone to reload unexpectedly, resulting in a temporary DoS condition.",Cisco,"Cisco Wireless Ip Phone 8821 And 8821-ex,Cisco Ip Phone 7800 Series And 8800 Series",7.5,HIGH,0.0015899999998509884,false,,false,false,true,2024-08-04T19:16:01.000Z,,false,false,,2019-05-03T15:29:00.000Z,0
CVE-2019-1716,https://securityvulnerability.io/vulnerability/CVE-2019-1716,Cisco IP Phone 7800 Series and 8800 Series Remote Code Execution Vulnerability,"A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or execute arbitrary code. The vulnerability exists because the software improperly validates user-supplied input during user authentication. An attacker could exploit this vulnerability by connecting to an affected device using HTTP and supplying malicious user credentials. A successful exploit could allow the attacker to trigger a reload of an affected device, resulting in a DoS condition, or to execute arbitrary code with the privileges of the app user. Cisco fixed this vulnerability in the following SIP Software releases: 10.3(1)SR5 and later for Cisco Unified IP Conference Phone 8831; 11.0(4)SR3 and later for Cisco Wireless IP Phone 8821 and 8821-EX; and 12.5(1)SR1 and later for the rest of the Cisco IP Phone 7800 Series and 8800 Series.",Cisco,"Cisco Unified Ip Conference Phone 8831,Cisco Wireless Ip Phone 8821 And 8821-ex,Cisco Ip Phone 7800 Series And 8800 Series",7.5,HIGH,0.009119999594986439,false,,false,false,true,2024-08-04T19:16:06.000Z,,false,false,,2019-03-22T20:29:00.000Z,0
CVE-2018-0316,https://securityvulnerability.io/vulnerability/CVE-2018-0316,,"A vulnerability in the Session Initiation Protocol (SIP) call-handling functionality of Cisco IP Phone 6800, 7800, and 8800 Series Phones with Multiplatform Firmware could allow an unauthenticated, remote attacker to cause an affected phone to reload unexpectedly, resulting in a temporary denial of service (DoS) condition. The vulnerability exists because the firmware of an affected phone incorrectly handles errors that could occur when an incoming phone call is not answered. An attacker could exploit this vulnerability by sending a set of maliciously crafted SIP packets to an affected phone. A successful exploit could allow the attacker to cause the affected phone to reload unexpectedly, resulting in a temporary DoS condition. This vulnerability affects Cisco IP Phone 6800, 7800, and 8800 Series Phones with Multiplatform Firmware if they are running a Multiplatform Firmware release prior to Release 11.1(2). Cisco Bug IDs: CSCvi24718.",Cisco,"Cisco Ip Phone 6800, 7800, And 8800 Series Unknown",7.5,HIGH,0.000859999970998615,false,,false,false,false,,,false,false,,2018-06-07T12:00:00.000Z,0
CVE-2018-0325,https://securityvulnerability.io/vulnerability/CVE-2018-0325,,"A vulnerability in the Session Initiation Protocol (SIP) call-handling functionality of Cisco IP Phone 7800 Series phones and Cisco IP Phone 8800 Series phones could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected phone. The vulnerability is due to incomplete input validation of SIP Session Description Protocol (SDP) parameters by the SDP parser of an affected phone. An attacker could exploit this vulnerability by sending a malformed SIP packet to an affected phone. A successful exploit could allow the attacker to cause all active phone calls on the affected phone to be dropped while the SIP process on the phone unexpectedly restarts, resulting in a DoS condition. Cisco Bug IDs: CSCvf40066.",Cisco,Cisco Ip Phone 7800 Series And 8800 Series,7.5,HIGH,0.0029899999499320984,false,,false,false,false,,,false,false,,2018-05-17T03:00:00.000Z,0