Vulnerabilities > CVE-2019-15257 - Unspecified vulnerability in Cisco Spa112 Firmware and Spa122 Firmware

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

cisco

nessus

NVD

Published: 2019-10-16

Updated: 2020-10-09

Summary

A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability is due to improper restrictions on configuration information. An attacker could exploit this vulnerability by sending a request to an affected device through the web-based management interface. A successful exploit could allow the attacker to return running configuration information that could also include sensitive information.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco Spa112 Firmware * Cisco Spa112 Firmware 1.4.1 Cisco Spa122 Firmware * Cisco Spa122 Firmware 1.4.1	10
Hardware	Cisco Cisco Spa112 - Cisco Spa122 -	2

Nessus

NASL family	CISCO
NASL id	CISCO-SA-20191016-SPA-RCE.NASL
description	The remote Cisco SPA100 Series device is affected by multiple vulnerabilities: - Multiple remote code execution vulnerabilties. An authenticated attacker can cause a stack overflow leading to control flow change in the Cisco SPA 112/122 device. (CVE-2019-15240, CVE-2019-15241, CVE-2019-15242, CVE-2019-15243, CVE-2019-15244, CVE-2019-15245, CVE-2019-15246, CVE-2019-15247, CVE-2019-15248, CVE-2019-15249, CVE-2019-15250, CVE-2019-15251, CVE-2019-15252) - Multiple cross-site scripting vulnerabilities. An authenticated attacker can inject javascript on the Cisco SPA 112/122 device. (CVE-2019-12702, CVE-2019-12703) - An arbitrary file disclosure vulnerability. An unauthenticated attacker can read any file on the device and elevate local privilege. (CVE-2019-12704) - Multiple privilege escalation vulnerabilites. An authenticated attacker can leak the administrator password hash to escalate local privilege. (CVE-2019-12708, CVE-2019-15257) - A denial of service vulnerability. An authenticated attacker can crash the web service with a malformed request. (CVE-2019-12258)
last seen	2020-06-01
modified	2020-06-02
plugin id	129982
published	2019-10-17
reporter	This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/129982
title	Cisco SPA100 Series Multiple Vulnerabilities

Summary

Vulnerable Configurations

Nessus

References