Vulnerabilities > Cisco > IP Phone Multiplatform Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2018-07-16 CVE-2018-0341 OS Command Injection vulnerability in Cisco IP Phone Multiplatform Firmware 11.1(2)
A vulnerability in the web-based UI of Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware before 11.2(1) could allow an authenticated, remote attacker to perform a command injection and execute commands with the privileges of the web server.
network
low complexity
cisco CWE-78
8.8