Vulnerabilities > Cisco > Unified IP Phones 9971 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-02-07 | CVE-2015-0604 | Improper Input Validation vulnerability in Cisco products The web framework on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to upload files to arbitrary locations on a phone's filesystem via crafted HTTP requests, aka Bug ID CSCup90424. | 5.0 |
| 2015-02-07 | CVE-2015-0601 | Improper Input Validation vulnerability in Cisco products Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allow local users to cause a denial of service (device reload) via crafted commands, aka Bug ID CSCup92790. | 4.6 |