TROYANOSYVIRUS
Volver a CVEs

CVE-2020-3111

HIGH
8.8

Descripcion

A vulnerability in the Cisco Discovery Protocol implementation for the Cisco IP Phone could allow an unauthenticated, adjacent attacker to remotely execute code with root privileges or cause a reload of an affected IP phone. The vulnerability is due to missing checks when processing Cisco Discovery Protocol messages. An attacker could exploit this vulnerability by sending a crafted Cisco Discovery Protocol packet to the targeted IP phone. A successful exploit could allow the attacker to remotely execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. Cisco Discovery Protocol is a Layer 2 protocol. To exploit this vulnerability, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).

Detalles CVE

Puntuacion CVSS v3.18.8
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueADJACENT_NETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado2/5/2020
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0

Productos afectados

cisco:ip_conference_phone_7832cisco:ip_conference_phone_7832_firmwarecisco:ip_conference_phone_7832_with_multiplatform_firmwarecisco:ip_conference_phone_8832cisco:ip_conference_phone_8832_firmwarecisco:ip_conference_phone_8832_with_multiplatform_firmwarecisco:ip_phone_6821cisco:ip_phone_6821_firmwarecisco:ip_phone_6841cisco:ip_phone_6841_firmwarecisco:ip_phone_6851cisco:ip_phone_6851_firmwarecisco:ip_phone_6861cisco:ip_phone_6861_firmwarecisco:ip_phone_6871cisco:ip_phone_6871_firmwarecisco:ip_phone_7811cisco:ip_phone_7811_firmwarecisco:ip_phone_7811_with_multiplatform_firmwarecisco:ip_phone_7821cisco:ip_phone_7821_firmwarecisco:ip_phone_7821_with_multiplatform_firmwarecisco:ip_phone_7841cisco:ip_phone_7841_firmwarecisco:ip_phone_7841_with_multiplatform_firmwarecisco:ip_phone_7861cisco:ip_phone_7861_firmwarecisco:ip_phone_7861_with_multiplatform_firmwarecisco:ip_phone_8811cisco:ip_phone_8811_firmwarecisco:ip_phone_8811_with_multiplatform_firmwarecisco:ip_phone_8841cisco:ip_phone_8841_firmwarecisco:ip_phone_8841_with_multiplatform_firmwarecisco:ip_phone_8845cisco:ip_phone_8845_firmwarecisco:ip_phone_8845_with_multiplatform_firmwarecisco:ip_phone_8851cisco:ip_phone_8851_firmwarecisco:ip_phone_8851_with_multiplatform_firmwarecisco:ip_phone_8861cisco:ip_phone_8861_firmwarecisco:ip_phone_8861_with_multiplatform_firmwarecisco:ip_phone_8865cisco:ip_phone_8865_firmwarecisco:ip_phone_8865_with_multiplatform_firmwarecisco:unified_ip_conference_phone_8831cisco:unified_ip_conference_phone_8831_firmwarecisco:unified_ip_conference_phone_8831_for_third-party_call_controlcisco:unified_ip_conference_phone_8831_for_third-party_call_control_firmwarecisco:wireless_ip_phone_8821cisco:wireless_ip_phone_8821-excisco:wireless_ip_phone_8821-ex_firmwarecisco:wireless_ip_phone_8821_firmware

Debilidades (CWE)

CWE-20CWE-20

Referencias

http://packetstormsecurity.com/files/156203/Cisco-Discovery-Protocol-CDP-Remote-Device-Takeover.html(psirt@cisco.com)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200205-voip-phones-rce-dos(psirt@cisco.com)
http://packetstormsecurity.com/files/156203/Cisco-Discovery-Protocol-CDP-Remote-Device-Takeover.html(af854a3a-2127-422b-91ae-364da2661108)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200205-voip-phones-rce-dos(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.