Privilege Escalation Vulnerability in Cisco Unified IP Phones 9900 Series
CVE-2012-1328

Currently unrated

Key Information:

Vendor
Cisco
Status
Unified Ip Phone Firmware
Unified Ip Phone
Vendor
CVE Published:
3 May 2012

Summary

Cisco Unified IP Phones 9900 series devices with firmware versions 9.1 and 9.2 are susceptible to a privilege escalation vulnerability due to improper handling of configuration downloads. This security issue enables local users to exploit unspecified injected data, potentially granting them unauthorized privileges on the device. Users are advised to apply necessary firmware updates and follow security guidelines from Cisco to mitigate risks associated with this vulnerability.

References

http://www.cisco.com/en/US/docs/voice_ip_comm/cuipph/9971...
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/75412
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.