CVE-2024-20357

EUVD-2024-18072
A vulnerability in the XML service of Cisco IP Phone firmware could allow an unauthenticated, remote attacker to initiate phone calls on an affected device.  

 This vulnerability exists because bounds-checking does not occur while parsing XML requests. An attacker could exploit this vulnerability by sending a crafted XML request to an affected device. A successful exploit could allow the attacker to initiate calls or play sounds on the device.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
Affected Products (NVD)
VendorProductVersion
ciscoip_phone_6871_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_7811_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_7821_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_7832_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_7841_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_7861_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_8811_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_8832_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_8841_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_8845_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_8851_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_8861_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_8865_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscovideo_phone_8875_firmware
𝑥
< 2.3.1.0101
ciscoip_phone_6821_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_6841_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_6851_with_multiplatform_firmware
𝑥
≤ 12.0.4
ciscoip_phone_6861_with_multiplatform_firmware
𝑥
≤ 12.0.4
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
ciscoip_phone_6871_with_multiplatform_firmware
𝑥
≤ 12.0.4
ADP
ciscoip_phone_6821_with_multiplatform_firmware
𝑥
≤ 12.0.4
ADP
ciscoip_phone_6851_with_multiplatform_firmware
𝑥
≤ 12.0.4
ADP
ciscoip_phone_7821_with_multiplatform_firmware
𝑥
≤ 12.0.4
ADP
ciscoip_phone_6861_with_multiplatform_firmware
𝑥
≤ 12.0.4
ADP
ciscoip_phone_6825_with_multiplatform_firmware
𝑥
≤ 12.0.4
ADP
ciscoip_phone_6841_with_multiplatform_firmware
𝑥
≤ 12.0.4
ADP
ciscoip_phone_7811_with_multiplatform_firmware
𝑥
≤ 12.0.4
ADP
ciscoip_phone_7841_with_multiplatform_firmware
𝑥
≤ 12.0.4
ADP
ciscoip_phone_7861_with_multiplatform_firmware
𝑥
≤ 12.0.4
ADP
ciscoip_phone_8800_series_with_multiplatform_firmware
𝑥
≤ 12.0.4
ADP
ciscovideo_phone_8875_firmware
𝑥
≤ 12.0.4
ADP
Common Weakness Enumeration
References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipphone-multi-vulns-cXAhCvS
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipphone-multi-vulns-cXAhCvS