Lucene search
CiscoCVE-2015-0603HistoryFeb 07, 2015 - 4:59 a.m.
CVE-2015-0603
2015-02-0704:59:06
CWE-264
cisco
web.nvd.nist.gov
28
cisco
ip 9900
firmware
vulnerability
denial of service
nvd
cve-2015-0603
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:N/I:N/A:C
AI Score
6.6
Confidence
High
EPSS
0
Percentile
5.1%
Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier use weak permissions for unspecified files, which allows local users to cause a denial of service (persistent hang or reboot) by writing to a phone’s filesystem, aka Bug ID CSCup90474.
Affected configurations
Node
ciscounified_ip_phones_9900_series_firmwareRange≤9.4\(.1\)
ciscounified_ip_phone_9951
ORciscounified_ip_phone_9971
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | unified_ip_phones_9900_series_firmware | * | cpe:2.3:o:cisco:unified_ip_phones_9900_series_firmware:*:*:*:*:*:*:*:* |
| cisco | unified_ip_phone_9951 | * | cpe:2.3:h:cisco:unified_ip_phone_9951:*:*:*:*:*:*:*:* |
| cisco | unified_ip_phone_9971 | * | cpe:2.3:h:cisco:unified_ip_phone_9971:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2015-0603
2015-02-07 04:59:06
nessus
nessus
prion
prion
Code injection
2015-02-07 04:59:00
cisco
cisco
Cisco Unified IP Phone 9900 Series Insecure Device Permissions Vulnerability
2015-02-04 20:41:00
cvelist
cvelist
CVE-2015-0603
2015-02-07 02:00:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:N/I:N/A:C
AI Score
6.6
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2015-0603