cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-33478,https://securityvulnerability.io/vulnerability/CVE-2021-33478,,"The TrustZone implementation in certain Broadcom MediaxChange firmware could allow an unauthenticated, physically proximate attacker to achieve arbitrary code execution in the TrustZone Trusted Execution Environment (TEE) of an affected device. This, for example, affects certain Cisco IP Phone and Wireless IP Phone products before 2021-07-07. Exploitation is possible only when the attacker can disassemble the device in order to control the voltage/current for chip pins.",Cisco,"Ip Phone 8800 Series With Multiplatform Firmware,Ip Phone 8861 With Multiplatform Firmware,Ip Phone 8811 With Multiplatform Firmware,Ip Phone 8841 With Multiplatform Firmware,Ip Phone 8851 With Multiplatform Firmware,Ip Phone 8865 With Multiplatform Firmware,Ip Phone 8845 With Multiplatform Firmware,Ip Phone 8800 Firmware,Ip Phone 8811 Firmware,Ip Phone 8841 Firmware,Ip Phone 8845 Firmware,Ip Phone 8851 Firmware,Ip Phone 8861 Firmware,Ip Phone 8865 Firmware,Wireless Ip Phone 8821 Firmware",6.8,MEDIUM,0.0008500000112690032,false,,false,false,false,,,false,false,,2021-07-22T16:53:32.000Z,0
CVE-2016-1476,https://securityvulnerability.io/vulnerability/CVE-2016-1476,,"Cross-site scripting (XSS) vulnerability on Cisco IP Phone 8800 devices with software 11.0 allows remote authenticated users to inject arbitrary web script or HTML via crafted parameters, aka Bug ID CSCuz03024.",Cisco,Ip Phone 8800 Series Firmware,5.4,MEDIUM,0.0010600000387057662,false,,false,false,false,,,false,false,,2016-08-22T10:00:00.000Z,0
CVE-2016-1479,https://securityvulnerability.io/vulnerability/CVE-2016-1479,,"Cisco IP Phone 8800 devices with software 11.0(1) allow remote attackers to cause a denial of service (memory corruption) via a crafted HTTP request, aka Bug ID CSCuz03038.",Cisco,Ip Phone 8800 Series Firmware,7.5,HIGH,0.0027799999807029963,false,,false,false,false,,,false,false,,2016-08-22T10:00:00.000Z,0
CVE-2016-1435,https://securityvulnerability.io/vulnerability/CVE-2016-1435,,"Cisco 8800 phones with software 11.0(1) do not properly enforce mounted-filesystem permissions, which allows local users to write to arbitrary files by leveraging shell access, aka Bug ID CSCuz03014.",Cisco,Ip Phone 8800 Series Firmware,7,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2016-06-23T00:00:00.000Z,0
CVE-2016-1434,https://securityvulnerability.io/vulnerability/CVE-2016-1434,,"The license-certificate upload functionality on Cisco 8800 phones with software 11.0(1) allows remote authenticated users to delete arbitrary files via an invalid file, aka Bug ID CSCuz03010.",Cisco,Ip Phone 8800 Series Firmware,6.5,MEDIUM,0.000910000002477318,false,,false,false,false,,,false,false,,2016-06-23T00:00:00.000Z,0
CVE-2016-1403,https://securityvulnerability.io/vulnerability/CVE-2016-1403,,"CISCO IP 8800 phones with software 11.0.1 and earlier allow local users to gain privileges for OS command execution via crafted CLI commands, aka Bug ID CSCuz03005.",Cisco,Ip Phone 8800 Series Firmware,7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2016-06-04T14:00:00.000Z,0