Описание
A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper validation of user-supplied requests to the web-based management interface. An attacker could exploit this vulnerability by sending a crafted request to the web-based management interface of an affected device. A successful exploit could allow the attacker to cause the device to stop responding, requiring manual intervention for recovery.
Ссылки
- Vendor Advisory
- ExploitThird Party Advisory
- Vendor Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Одновременно
Одно из
Одновременно
Одно из
EPSS
6.5 Medium
CVSS3
6.5 Medium
CVSS3
6.8 Medium
CVSS2
Дефекты
Связанные уязвимости
A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper validation of user-supplied requests to the web-based management interface. An attacker could exploit this vulnerability by sending a crafted request to the web-based management interface of an affected device. A successful exploit could allow the attacker to cause the device to stop responding, requiring manual intervention for recovery.
Уязвимость веб-интерфейса управления микропрограммного обеспечения IP-телефонов Cisco SPA100 Series, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.5 Medium
CVSS3
6.5 Medium
CVSS3
6.8 Medium
CVSS2