SPA112

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2023-20126	Cisco Systems, Inc. SPA112		0.06	—	0.38		May 4, 2023	A vulnerability in the web-based management interface of Cisco SPA112 2-Port Phone Adapters could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. This vulnerability is due to a missing authentication process within the firmware upgrade…
CVE-2019-1683	Cisco Systems, Inc. SPA112		0.00	—	0.01		Feb 25, 2019	A vulnerability in the certificate handling component of the Cisco SPA112, SPA525, and SPA5X5 Series IP Phones could allow an unauthenticated, remote attacker to listen to or control some aspects of a Transport Level Security (TLS)-encrypted Session Initiation Protocol (SIP)…

CVE-2023-20126May 4, 2023
Cisco Systems, Inc.
SPA112
risk 0.06cvss —epss 0.38
A vulnerability in the web-based management interface of Cisco SPA112 2-Port Phone Adapters could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. This vulnerability is due to a missing authentication process within the firmware upgrade…
CVE-2019-1683Feb 25, 2019
Cisco Systems, Inc.
SPA112
risk 0.00cvss —epss 0.01
A vulnerability in the certificate handling component of the Cisco SPA112, SPA525, and SPA5X5 Series IP Phones could allow an unauthenticated, remote attacker to listen to or control some aspects of a Transport Level Security (TLS)-encrypted Session Initiation Protocol (SIP)…