| CVE-2014-0658 | | 0.00 | — | 0.02 | | Jan 10, 2014 | Cisco 9900 Unified IP phones allow remote attackers to cause a denial of service (unregistration) via a crafted SIP header, aka Bug ID CSCul24898. |
| CVE-2013-6685 | | 0.00 | — | 0.00 | | Nov 13, 2013 | The firmware on Cisco Unified IP phones 8961, 9951, and 9971 uses weak permissions for memory block devices, which allows local users to gain privileges by mounting a device with a setuid file in its filesystem, aka Bug ID CSCui04382. |
| CVE-2013-5533 | | 0.00 | — | 0.00 | | Oct 11, 2013 | The image-upgrade functionality on Cisco 9900 Unified IP phones allows local users to gain privileges by placing shell commands in an unspecified parameter, aka Bug ID CSCuh10334. |
| CVE-2013-5532 | | 0.00 | — | 0.01 | | Oct 11, 2013 | Buffer overflow in the web-application interface on Cisco 9900 IP phones allows remote attackers to cause a denial of service (webapp interface outage) via long values in unspecified fields, aka Bug ID CSCuh10343. |
| CVE-2013-5526 | | 0.00 | — | 0.01 | | Oct 10, 2013 | Cisco 9900 fourth-generation IP phones do not properly perform SDP negotiation, which allows remote attackers to cause a denial of service (device reboot) via crafted SDP packets, aka Bug ID CSCuf06698. |
| CVE-2013-3426 | | 0.00 | — | 0.00 | | Jul 18, 2013 | The Serviceability servlet on Cisco 9900 IP phones does not properly restrict paths, which allows remote attackers to read arbitrary files by specifying a pathname in a file request, aka Bug ID CSCuh52810. |
