Vulnslist

find the latest Cisco vulnerabilities

CVE-2007-6190

The HTTP daemon in the Cisco Unified IP Phone, when the Extension Mobility feature is enabled, allows remote authenticated users of other phones associated with the same CUCM server to eavesdrop on the physical environment via a CiscoIPPhoneExecute message containing a URL attribute of an ExecuteItem element that specifies a Real-Time Transport Protocol (RTP) audio stream.

SeverityLOW
CVSS3.5
CWECWE-200
KEV
Published
Modified

Related Products

Product Advisory
Cisco RV Series Routers Cisco-SA-20071128-CVE-2007-6190
Cisco Nexus Dashboard Cisco-SA-20071128-CVE-2007-6190
Cisco Catalyst PON Series Switches Cisco-SA-20071128-CVE-2007-6190
Cisco Application Centric Infrastructure Virtual Edge Cisco-SA-20071128-CVE-2007-6190
Cisco Unified IP Phone 7971G Cisco-SA-20071128-CVE-2007-6190
Cisco Unified IP Phone 7970G Cisco-SA-20071128-CVE-2007-6190
Cisco Unified IP Phone 7965G Cisco-SA-20071128-CVE-2007-6190
Cisco Unified IP Phone 7962G Cisco-SA-20071128-CVE-2007-6190
Cisco Unified IP Phone 7961G Cisco-SA-20071128-CVE-2007-6190
Cisco Unified IP Phone 7945G Cisco-SA-20071128-CVE-2007-6190
Cisco Unified IP Phone 7942G Cisco-SA-20071128-CVE-2007-6190
Cisco Unified IP Phone 7941G Cisco-SA-20071128-CVE-2007-6190
Cisco Unified IP Phone 7931G Cisco-SA-20071128-CVE-2007-6190
Cisco Unified IP Phone 7911G Cisco-SA-20071128-CVE-2007-6190
Cisco Unified IP Phone 7906G Cisco-SA-20071128-CVE-2007-6190