Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Multiple Cisco IP Phones Firmware Image Upload Vulnerability

cisco-sa-20151209-ipp · Medium · Published · Updated

A vulnerability in the TFTP implementation of the Cisco Small Business SPA30X and SPA50X IP Phones could allow an unauthenticated, local attacker to load arbitrary firmware images onto the affected device. The vulnerability is due to insufficient file integrity checks of the firmware image. An attacker could exploit this vulnerability by gaining access to the local shell of the device and loading an arbitrary firmware image onto the device. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-ipp

Cisco advisory · CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEsCVE-2015-6403
Cisco Bug IDsCSCut67400
CVSS ScoreBase 4.9
Base 4.9 AV:L/AC:L/Au:N/C:N/I:C/A:N/E:F/RL:OF/RC:C
Product Names From Source
Cisco Small Business SPA500 Series IP Phones, Cisco Small Business SPA300 Series IP Phones

Related Products

Product CVE Evidence
Cisco Small Business SPA500 Series IP Phones CVE-2015-6403 Cisco OpenVuln
Cisco Small Business SPA300 Series IP Phones CVE-2015-6403 Cisco OpenVuln
Cisco IP phone CVE-2015-6403 Cisco OpenVuln