Vulnerabilities > Cisco > SPA 301
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-09-21 | CVE-2017-12219 | Unspecified vulnerability in Cisco products A vulnerability in the handling of IP fragments for the Cisco Small Business SPA300, SPA500, and SPA51x Series IP Phones could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition. | 7.8 |
2015-12-15 | CVE-2015-6403 | Improper Input Validation vulnerability in Cisco Spa300 Firmware and Spa500 Firmware The TFTP implementation on Cisco Small Business SPA30x, SPA50x, SPA51x phones 7.5.7 improperly validates firmware-image file integrity, which allows local users to load a Trojan horse image by leveraging shell access, aka Bug ID CSCut67400. | 7.2 |