Description
The web framework on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to upload files to arbitrary locations on a phone's filesystem via crafted HTTP requests, aka Bug ID CSCup90424.
Published: 2015-02-07
Score: 5.0 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2015-0617 The web framework on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to upload files to arbitrary locations on a phone's filesystem via crafted HTTP requests, aka Bug ID CSCup90424.
History

No history.

Subscriptions

Cisco Unified Ip Phone 9951 Unified Ip Phone 9971 Unified Ip Phones 9951 Firmware Unified Ip Phones 9971 Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published:

Updated: 2024-08-06T04:17:32.574Z

Reserved: 2015-01-07T00:00:00.000Z

Link: CVE-2015-0604

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2015-02-07T04:59:07.797

Modified: 2026-05-06T22:30:45.220

Link: CVE-2015-0604

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses