{"uuid": "b85239a0-9960-4c73-86cf-390a033bc0ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20968", "type": "published-proof-of-concept", "source": "https://t.me/cKure/10534", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 Zero-Day: Cisco discloses high-severity IP phone zero-day with exploit code: CVE-2022-20968, as the security flaw is tracked, is caused by insufficient input validation of received Cisco Discovery Protocol packets, which unauthenticated, adjacent attackers can exploit to trigger a stack overflow.\n\nhttps://www.bleepingcomputer.com/news/security/cisco-discloses-high-severity-ip-phone-zero-day-with-exploit-code/", "creation_timestamp": "2022-12-10T04:54:54.000000Z"}