Hacking News Critical Flaw in Cisco IP Phone Series Exposes Users to Command Injection Attack - Printable Version +- (https://hackmyride.com/forum) +-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211) +--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278) +---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279) +---- Thread: Hacking News Critical Flaw in Cisco IP Phone Series Exposes Users to Command Injection Attack (/showthread.php?tid=808)

Critical Flaw in Cisco IP Phone Series Exposes Users to Command Injection Attack - The Hacker News - 03-02-2023 Critical Flaw in Cisco IP Phone Series Exposes Users to Command Injection Attack Cisco on Wednesday rolled out security updates to address a critical flaw impacting its IP Phone 6800, 7800, 7900, and 8800 Series products. The vulnerability, tracked as CVE-2023-20078, is rated 9.8 out of 10 on the CVSS scoring system and is described as a command injection bug in the web-based management interface arising due to insufficient validation of user-supplied input. Successful https://thehackernews.com/2023/03/critical-flaw-in-cisco-ip-phone-series.html