Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2024-20450
PUBLISHED
More InfoOfficial Page
Assigner-cisco
Assigner Org ID-d1c1063e-7a18-46af-9102-31f8928bc633
View Known Exploited Vulnerability (KEV) details
Published At-07 Aug, 2024 | 16:46
Updated At-22 Aug, 2024 | 15:31
Rejected At-
▼CVE Numbering Authority (CNA)

Multiple vulnerabilities in the web-based management interface of Cisco Small Business SPA300 Series IP Phones and Cisco Small Business SPA500 Series IP Phones could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system with root privileges. These vulnerabilities exist because incoming HTTP packets are not properly checked for errors, which could result in a buffer overflow. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to overflow an internal buffer and execute arbitrary commands at the root privilege level.

Affected Products
Vendor
Cisco Systems, Inc.Cisco
Product
Cisco Small Business IP Phones
Versions
Affected
  • 7.6.0
  • 7.6.2
  • 7.6.2SR3
  • 7.6.2SR6
  • 7.6.2SR2
  • 7.6.2SR4
  • 7.6.2SR1
  • 7.6.2SR5
  • 7.6.2SR7
  • 7.6.1
  • 7.3.7
  • 7.5.5
  • 7.5.6(XU)
  • 7.5.2
  • 7.5.2a
  • 7.5.7
  • 7.5.3
  • 7.5.6
  • 7.5.2b
  • 7.5.6c
  • 7.5.6a
  • 7.5.7s
  • 7.5.1
  • 7.5.5a
  • 7.5.5b
  • 7.5.4
  • 7.4.7
  • 7.4.4
  • 7.4.8
  • 7.4.3
  • 7.4.9
  • 7.4.6
  • 1.0.17
Problem Types
TypeCWE IDDescription
cweCWE-120Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Type: cwe
CWE ID: CWE-120
Description: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Metrics
VersionBase scoreBase severityVector
3.19.8CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Version: 3.1
Base score: 9.8
Base severity: CRITICAL
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits

The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.

Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-spa-http-vulns-RJZmX2Xz
N/A
Hyperlink: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-spa-http-vulns-RJZmX2Xz
Resource: N/A
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Vendor
Cisco Systems, Inc.cisco
Product
small_business_ip_phone_firmware
CPEs
  • cpe:2.3:a:cisco:small_business_ip_phone_firmware:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 7.6.0
  • 7.6.2
  • 7.6.2sr3
  • 7.6.2sr6
  • 7.6.2sr2
  • 7.6.2sr4
  • 7.6.2sr1
  • 7.6.2sr5
  • 7.6.2sr7
  • 7.6.1
  • 7.3.7
  • 7.5.5
  • 7.5.6xu
  • 7.5.2
  • 7.5.2a
  • 7.5.7
  • 7.5.3
  • 7.5.6
  • 7.5.2b
  • 7.5.6a
  • 7.5.7s
  • 7.5.1
  • 7.5.5a
  • 7.5.5b
  • 7.5.4
  • 7.4.7
  • 7.4.4
  • 7.4.8
  • 7.4.3
  • 7.4.9
  • 7.4.6
  • 1.0.17
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found