Vulnerabilities > Cisco > IP Phone 6825 With Multiplatform Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-08-16 CVE-2023-20221 Cross-Site Request Forgery (CSRF) vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against a user of the web-based management interface of an affected system. This vulnerability is due to insufficient CSRF protections for the web-based management interface of an affected device.
network
low complexity
cisco CWE-352
6.5