CVE-2020-3161CISA KEV: Actively Exploited

Cisco IP Phones Web Server Remote Code Execution and Denial-of-Service Vulnerability

Published Nov 3, 2021·Updated Nov 3, 2021

Description

Cisco IP Phones contain an improper input validation vulnerability for HTTP requests. Exploitation could allow an attacker to execute code remotely with root privileges or cause a denial-of-service (DoS) condition.

Public Exploits & PoCs1 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free