// For flags

CVE-2023-20079

Cisco IP Phone 6800, 7800, 7900, and 8800 Series Web UI Vulnerabilities

Severity Score

7.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Attend
*SSVC
Descriptions

Multiple vulnerabilities in the web-based management interface of certain Cisco IP Phones could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
* Common Vulnerability Scoring System
SSVC
  • Decision:Attend
Exploitation
None
Automatable
Yes
Tech. Impact
Total
* Organization's Worst-case Scenario
Timeline
  • 2022-10-27 CVE Reserved
  • 2023-03-03 CVE Published
  • 2024-09-23 EPSS Updated
  • 2024-10-28 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-121: Stack-based Buffer Overflow
  • CWE-787: Out-of-bounds Write
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cisco
Search vendor "Cisco"
Ip Phone 6871 Firmware
Search vendor "Cisco" for product "Ip Phone 6871 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 6871 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 6871
Search vendor "Cisco" for product "Ip Phone 6871"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 6861 Firmware
Search vendor "Cisco" for product "Ip Phone 6861 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 6861 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 6861
Search vendor "Cisco" for product "Ip Phone 6861"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 6851 Firmware
Search vendor "Cisco" for product "Ip Phone 6851 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 6851 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 6851
Search vendor "Cisco" for product "Ip Phone 6851"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 6841 Firmware
Search vendor "Cisco" for product "Ip Phone 6841 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 6841 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 6841
Search vendor "Cisco" for product "Ip Phone 6841"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 6825 Firmware
Search vendor "Cisco" for product "Ip Phone 6825 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 6825 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 6825
Search vendor "Cisco" for product "Ip Phone 6825"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 7861 Firmware
Search vendor "Cisco" for product "Ip Phone 7861 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 7861 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 7861
Search vendor "Cisco" for product "Ip Phone 7861"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 7841 Firmware
Search vendor "Cisco" for product "Ip Phone 7841 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 7841 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 7841
Search vendor "Cisco" for product "Ip Phone 7841"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 7832 Firmware
Search vendor "Cisco" for product "Ip Phone 7832 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 7832 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 7832
Search vendor "Cisco" for product "Ip Phone 7832"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 7821 Firmware
Search vendor "Cisco" for product "Ip Phone 7821 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 7821 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 7821
Search vendor "Cisco" for product "Ip Phone 7821"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 7811 Firmware
Search vendor "Cisco" for product "Ip Phone 7811 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 7811 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 7811
Search vendor "Cisco" for product "Ip Phone 7811"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 8865 Firmware
Search vendor "Cisco" for product "Ip Phone 8865 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 8865 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 8865
Search vendor "Cisco" for product "Ip Phone 8865"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 8861 Firmware
Search vendor "Cisco" for product "Ip Phone 8861 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 8861 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 8861
Search vendor "Cisco" for product "Ip Phone 8861"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 8851 Firmware
Search vendor "Cisco" for product "Ip Phone 8851 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 8851 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 8851
Search vendor "Cisco" for product "Ip Phone 8851"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 8845 Firmware
Search vendor "Cisco" for product "Ip Phone 8845 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 8845 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 8845
Search vendor "Cisco" for product "Ip Phone 8845"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 8841 Firmware
Search vendor "Cisco" for product "Ip Phone 8841 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 8841 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 8841
Search vendor "Cisco" for product "Ip Phone 8841"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 8832 Firmware
Search vendor "Cisco" for product "Ip Phone 8832 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 8832 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 8832
Search vendor "Cisco" for product "Ip Phone 8832"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 8811 Firmware
Search vendor "Cisco" for product "Ip Phone 8811 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 8811 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 8811
Search vendor "Cisco" for product "Ip Phone 8811"
--
Safe
Cisco
Search vendor "Cisco"
Ip Phone 8831 Firmware
Search vendor "Cisco" for product "Ip Phone 8831 Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Ip Phone 8831 Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Ip Phone 8831
Search vendor "Cisco" for product "Ip Phone 8831"
--
Safe
Cisco
Search vendor "Cisco"
Unified Ip Phone 7945g Firmware
Search vendor "Cisco" for product "Unified Ip Phone 7945g Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Unified Ip Phone 7945g Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Unified Ip Phone 7945g
Search vendor "Cisco" for product "Unified Ip Phone 7945g"
--
Safe
Cisco
Search vendor "Cisco"
Unified Ip Phone 7965g Firmware
Search vendor "Cisco" for product "Unified Ip Phone 7965g Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Unified Ip Phone 7965g Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Unified Ip Phone 7965g
Search vendor "Cisco" for product "Unified Ip Phone 7965g"
--
Safe
Cisco
Search vendor "Cisco"
Unified Ip Phone 7975g Firmware
Search vendor "Cisco" for product "Unified Ip Phone 7975g Firmware"
< 11.3.7sr1
Search vendor "Cisco" for product "Unified Ip Phone 7975g Firmware" and version " < 11.3.7sr1"
-
Affected
in Cisco
Search vendor "Cisco"
Unified Ip Phone 7975g
Search vendor "Cisco" for product "Unified Ip Phone 7975g"
--
Safe