Vulnerabilities > Cisco > Unified IP Phone 8865Nr Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-01-20 CVE-2023-20018 Incorrect Authorization vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco IP Phone 7800 and 8800 Series Phones could allow an unauthenticated, remote attacker to bypass authentication on an affected device. This vulnerability is due to insufficient validation of user-supplied input.
network
low complexity
cisco CWE-863
6.5
2020-06-18 CVE-2020-3360 Incorrect Authorization vulnerability in Cisco products
A vulnerability in the Web Access feature of Cisco IP Phones Series 7800 and Series 8800 could allow an unauthenticated, remote attacker to view sensitive information on an affected device.
network
low complexity
cisco CWE-863
5.0