Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE network
low complexity
cisco
nessus
Published: 2019-10-16
Updated: 2024-11-21
Summary
A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability is due to improper restrictions on configuration information. An attacker could exploit this vulnerability by sending a request to an affected device through the web-based management interface. A successful exploit could allow the attacker to return running configuration information that could also include sensitive information.
Vulnerable Configurations
Part | Description | Count |
OS | Cisco | 10 |
Hardware | Cisco | 2 |
Nessus
NASL family | CISCO |
NASL id | CISCO-SA-20191016-SPA-RCE.NASL |
description | The remote Cisco SPA100 Series device is affected by multiple vulnerabilities: - Multiple remote code execution vulnerabilties. An authenticated attacker can cause a stack overflow leading to control flow change in the Cisco SPA 112/122 device. (CVE-2019-15240, CVE-2019-15241, CVE-2019-15242, CVE-2019-15243, CVE-2019-15244, CVE-2019-15245, CVE-2019-15246, CVE-2019-15247, CVE-2019-15248, CVE-2019-15249, CVE-2019-15250, CVE-2019-15251, CVE-2019-15252) - Multiple cross-site scripting vulnerabilities. An authenticated attacker can inject javascript on the Cisco SPA 112/122 device. (CVE-2019-12702, CVE-2019-12703) - An arbitrary file disclosure vulnerability. An unauthenticated attacker can read any file on the device and elevate local privilege. (CVE-2019-12704) - Multiple privilege escalation vulnerabilites. An authenticated attacker can leak the administrator password hash to escalate local privilege. (CVE-2019-12708, CVE-2019-15257) - A denial of service vulnerability. An authenticated attacker can crash the web service with a malformed request. (CVE-2019-12258) |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 129982 |
published | 2019-10-17 |
reporter | This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/129982 |
title | Cisco SPA100 Series Multiple Vulnerabilities |