var-202301-0952
Vulnerability from variot
A vulnerability in the web-based management interface of Cisco IP Phone 7800 and 8800 Series Phones could allow an unauthenticated, remote attacker to bypass authentication on an affected device.
This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to the web-based management interface. A successful exploit could allow the attacker to access certain parts of the web interface that would normally require authentication
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-202301-0952",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "ip phone 8865",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 7861",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 7800",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 8821",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 8831",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 8851",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 8861",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "wireless ip phone 8821-ex",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(6\\)sr4"
},
{
"model": "ip phone 8832",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 7841",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "unified ip phone 8865nr",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "unified ip phone 8851nr",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "wireless ip phone 8821",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(6\\)sr4"
},
{
"model": "ip phone 7811",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 8845",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 7821",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 8821-ex",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 8800",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 8841",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phones 8832",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 7832",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 8811",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)sr2"
},
{
"model": "ip phone 7821",
"scope": null,
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
},
{
"model": "ip phone 7841",
"scope": null,
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
},
{
"model": "ip phone 8811",
"scope": null,
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
},
{
"model": "ip phone 7811",
"scope": null,
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
},
{
"model": "ip phone 8821-ex",
"scope": null,
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
},
{
"model": "ip phone 7832",
"scope": null,
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
},
{
"model": "ip phone 8800",
"scope": null,
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
},
{
"model": "ip phone 8821",
"scope": null,
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
},
{
"model": "ip phone 7861",
"scope": null,
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
},
{
"model": "cisco ip phone 7800 \u30b7\u30ea\u30fc\u30ba",
"scope": null,
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2023-002345"
},
{
"db": "NVD",
"id": "CVE-2023-20018"
}
]
},
"cve": "CVE-2023-20018",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"exploitabilityScore": 3.9,
"id": "CVE-2023-20018",
"impactScore": 2.5,
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "ykramarz@cisco.com",
"availabilityImpact": "HIGH",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"exploitabilityScore": 3.9,
"id": "CVE-2023-20018",
"impactScore": 4.7,
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "None",
"baseScore": 6.5,
"baseSeverity": "Medium",
"confidentialityImpact": "Low",
"exploitabilityScore": null,
"id": "CVE-2023-20018",
"impactScore": null,
"integrityImpact": "Low",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2023-20018",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "ykramarz@cisco.com",
"id": "CVE-2023-20018",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2023-20018",
"trust": 0.8,
"value": "Medium"
},
{
"author": "CNNVD",
"id": "CNNVD-202301-1004",
"trust": 0.6,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2023-002345"
},
{
"db": "CNNVD",
"id": "CNNVD-202301-1004"
},
{
"db": "NVD",
"id": "CVE-2023-20018"
},
{
"db": "NVD",
"id": "CVE-2023-20018"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability in the web-based management interface of Cisco IP Phone 7800 and 8800 Series Phones could allow an unauthenticated, remote attacker to bypass authentication on an affected device. \r\n\r This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to the web-based management interface. A successful exploit could allow the attacker to access certain parts of the web interface that would normally require authentication",
"sources": [
{
"db": "NVD",
"id": "CVE-2023-20018"
},
{
"db": "JVNDB",
"id": "JVNDB-2023-002345"
},
{
"db": "VULMON",
"id": "CVE-2023-20018"
}
],
"trust": 1.71
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2023-20018",
"trust": 3.3
},
{
"db": "JVNDB",
"id": "JVNDB-2023-002345",
"trust": 0.8
},
{
"db": "AUSCERT",
"id": "ESB-2023.0179",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-202301-1004",
"trust": 0.6
},
{
"db": "VULMON",
"id": "CVE-2023-20018",
"trust": 0.1
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2023-20018"
},
{
"db": "JVNDB",
"id": "JVNDB-2023-002345"
},
{
"db": "CNNVD",
"id": "CNNVD-202301-1004"
},
{
"db": "NVD",
"id": "CVE-2023-20018"
}
]
},
"id": "VAR-202301-0952",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VARIoT devices database",
"id": null
}
],
"trust": 0.3638431
},
"last_update_date": "2024-08-14T14:17:30.309000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "cisco-sa-ip-phone-auth-bypass-pSqxZRPR",
"trust": 0.8,
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ip-phone-auth-bypass-pSqxZRPR"
},
{
"title": "Cisco: Cisco IP Phone 7800 and 8800 Series Web Management Interface Authentication Bypass Vulnerability",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-ip-phone-auth-bypass-pSqxZRPR"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2023-20018"
},
{
"db": "JVNDB",
"id": "JVNDB-2023-002345"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-288",
"trust": 1.0
},
{
"problemtype": "CWE-863",
"trust": 1.0
},
{
"problemtype": "Illegal authentication (CWE-863) [NVD evaluation ]",
"trust": 0.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2023-002345"
},
{
"db": "NVD",
"id": "CVE-2023-20018"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 1.8,
"url": "https://sec.cloudapps.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-ip-phone-auth-bypass-psqxzrpr"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2023-20018"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2023.0179"
},
{
"trust": 0.6,
"url": "https://cxsecurity.com/cveshow/cve-2023-20018/"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2023-20018"
},
{
"db": "JVNDB",
"id": "JVNDB-2023-002345"
},
{
"db": "CNNVD",
"id": "CNNVD-202301-1004"
},
{
"db": "NVD",
"id": "CVE-2023-20018"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULMON",
"id": "CVE-2023-20018"
},
{
"db": "JVNDB",
"id": "JVNDB-2023-002345"
},
{
"db": "CNNVD",
"id": "CNNVD-202301-1004"
},
{
"db": "NVD",
"id": "CVE-2023-20018"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2023-01-20T00:00:00",
"db": "VULMON",
"id": "CVE-2023-20018"
},
{
"date": "2023-07-05T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2023-002345"
},
{
"date": "2023-01-12T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202301-1004"
},
{
"date": "2023-01-20T07:15:13.633000",
"db": "NVD",
"id": "CVE-2023-20018"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2023-01-20T00:00:00",
"db": "VULMON",
"id": "CVE-2023-20018"
},
{
"date": "2023-07-05T07:48:00",
"db": "JVNDB",
"id": "JVNDB-2023-002345"
},
{
"date": "2023-02-02T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202301-1004"
},
{
"date": "2024-01-25T17:15:25.060000",
"db": "NVD",
"id": "CVE-2023-20018"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202301-1004"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco\u00a0IP\u00a0Phone\u00a07800\u00a0 and \u00a08800\u00a0 Fraudulent Authentication Vulnerability in Series",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2023-002345"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "other",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202301-1004"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.