Vulnerabilities > Cisco > Unified IP Phone 9951
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-10-10 | CVE-2013-5526 | Improper Input Validation vulnerability in Cisco Unified IP Phone 9951 and Unified IP Phone 9971 Cisco 9900 fourth-generation IP phones do not properly perform SDP negotiation, which allows remote attackers to cause a denial of service (device reboot) via crafted SDP packets, aka Bug ID CSCuf06698. | 7.1 |
2013-07-18 | CVE-2013-3426 | Permissions, Privileges, and Access Controls vulnerability in Cisco products The Serviceability servlet on Cisco 9900 IP phones does not properly restrict paths, which allows remote attackers to read arbitrary files by specifying a pathname in a file request, aka Bug ID CSCuh52810. | 5.0 |