Vulnerabilities > Cisco > Spa525G Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2019-02-25 CVE-2019-1683 Improper Certificate Validation vulnerability in Cisco products
A vulnerability in the certificate handling component of the Cisco SPA112, SPA525, and SPA5X5 Series IP Phones could allow an unauthenticated, remote attacker to listen to or control some aspects of a Transport Level Security (TLS)-encrypted Session Initiation Protocol (SIP) conversation.
network
high complexity
cisco CWE-295
7.4