← Retour aux CVEs
CVE-2008-1250
N/ADescription
Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface on the central phone server for the Snom 320 SIP Phone allow remote attackers to perform actions as the phone user, as demonstrated by inserting an address-book entry containing an XSS sequence.
Details CVE
Score CVSS v3.1N/A
Publie3/10/2008
Derniere modification4/23/2026
Sourcenvd
Observations honeypot0
Produits affectes
snom:320_sip_phone
Faiblesses (CWE)
CWE-352
References
http://secunia.com/advisories/28938(cve@mitre.org)
http://www.gnucitizen.org/projects/router-hacking-challenge/(cve@mitre.org)
http://www.securityfocus.com/archive/1/489009/100/0/threaded(cve@mitre.org)
http://www.securityfocus.com/bid/27767(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/40500(cve@mitre.org)
http://secunia.com/advisories/28938(af854a3a-2127-422b-91ae-364da2661108)
http://www.gnucitizen.org/projects/router-hacking-challenge/(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/489009/100/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/27767(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/40500(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.