CVE-2019-1635

A vulnerability in the call-handling functionality of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to cause an affected phone to reload unexpectedly, resulting in a temporary denial of service (DoS) condition. The vulnerability is due to incomplete error handling when XML data within a SIP packet is parsed. An attacker could exploit this vulnerability by sending a SIP packet that contains a malicious XML payload to an affected phone. A successful exploit could allow the attacker to cause the affected phone to reload unexpectedly, resulting in a temporary DoS condition.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
ciscoCNA
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
VendorProductVersion
ciscoip_conference_phone_7832_firmware
9.3\(4\)sr3
ciscoip_conference_phone_7832_firmware
10.3\(1\)sr4b
ciscoip_conference_phone_7832_firmware
11.0\(4\)sr2
ciscoip_conference_phone_7832_firmware
12.1\(1\)sr1
ciscoip_conference_phone_8832_firmware
9.3\(4\)sr3
ciscoip_conference_phone_8832_firmware
10.3\(1\)sr4b
ciscoip_conference_phone_8832_firmware
11.0\(4\)sr2
ciscoip_conference_phone_8832_firmware
12.1\(1\)sr1
ciscoip_phone_7811_firmware
9.3\(4\)sr3
ciscoip_phone_7811_firmware
10.3\(1\)sr4b
ciscoip_phone_7811_firmware
11.0\(4\)sr2
ciscoip_phone_7811_firmware
12.1\(1\)sr1
ciscoip_phone_7821_firmware
9.3\(4\)sr3
ciscoip_phone_7821_firmware
10.3\(1\)sr4b
ciscoip_phone_7821_firmware
11.0\(4\)sr2
ciscoip_phone_7821_firmware
12.1\(1\)sr1
ciscoip_phone_7841_firmware
9.3\(4\)sr3
ciscoip_phone_7841_firmware
10.3\(1\)sr4b
ciscoip_phone_7841_firmware
11.0\(4\)sr2
ciscoip_phone_7841_firmware
12.1\(1\)sr1
ciscoip_phone_7861_firmware
9.3\(4\)sr3
ciscoip_phone_7861_firmware
10.3\(1\)sr4b
ciscoip_phone_7861_firmware
11.0\(4\)sr2
ciscoip_phone_7861_firmware
12.1\(1\)sr1
ciscoip_phone_8811_firmware
9.3\(4\)sr3
ciscoip_phone_8811_firmware
10.3\(1\)sr4b
ciscoip_phone_8811_firmware
11.0\(4\)sr2
ciscoip_phone_8811_firmware
12.1\(1\)sr1
ciscoip_phone_8841_firmware
9.3\(4\)sr3
ciscoip_phone_8841_firmware
10.3\(1\)sr4b
ciscoip_phone_8841_firmware
11.0\(4\)sr2
ciscoip_phone_8841_firmware
12.1\(1\)sr1
ciscoip_phone_8845_firmware
9.3\(4\)sr3
ciscoip_phone_8845_firmware
10.3\(1\)sr4b
ciscoip_phone_8845_firmware
11.0\(4\)sr2
ciscoip_phone_8845_firmware
12.1\(1\)sr1
ciscoip_phone_8851_firmware
9.3\(4\)sr3
ciscoip_phone_8851_firmware
10.3\(1\)sr4b
ciscoip_phone_8851_firmware
11.0\(4\)sr2
ciscoip_phone_8851_firmware
12.1\(1\)sr1
ciscoip_phone_8861_firmware
9.3\(4\)sr3
ciscoip_phone_8861_firmware
10.3\(1\)sr4b
ciscoip_phone_8861_firmware
11.0\(4\)sr2
ciscoip_phone_8861_firmware
12.1\(1\)sr1
ciscoip_phone_8865_firmware
9.3\(4\)sr3
ciscoip_phone_8865_firmware
10.3\(1\)sr4b
ciscoip_phone_8865_firmware
11.0\(4\)sr2
ciscoip_phone_8865_firmware
12.1\(1\)sr1
ciscounified_ip_8831_conference_phone1_firmware
9.3\(4\)sr3
ciscounified_ip_8831_conference_phone1_firmware
10.3\(1\)sr4b
ciscounified_ip_8831_conference_phone1_firmware
11.0\(4\)sr2
ciscounified_ip_8831_conference_phone1_firmware
12.1\(1\)sr1
ciscounified_ip_8831_conference_phone_for_third-party_call_control2_firmware
9.3\(4\)sr3
ciscounified_ip_8831_conference_phone_for_third-party_call_control2_firmware
10.3\(1\)sr4b
ciscounified_ip_8831_conference_phone_for_third-party_call_control2_firmware
11.0\(4\)sr2
ciscounified_ip_8831_conference_phone_for_third-party_call_control2_firmware
12.1\(1\)sr1
ciscowireless_ip_phone_8821_firmware
9.3\(4\)sr3
ciscowireless_ip_phone_8821_firmware
10.3\(1\)sr4b
ciscowireless_ip_phone_8821_firmware
11.0\(4\)sr2
ciscowireless_ip_phone_8821_firmware
12.1\(1\)sr1
ciscowireless_ip_phone_8821-ex_firmware
9.3\(4\)sr3
ciscowireless_ip_phone_8821-ex_firmware
10.3\(1\)sr4b
ciscowireless_ip_phone_8821-ex_firmware
11.0\(4\)sr2
ciscowireless_ip_phone_8821-ex_firmware
12.1\(1\)sr1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-phone-sip-xml-dos
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-phone-sip-xml-dos