ID
VAR-202004-1234
CVE
CVE-2020-3161
TITLE
Cisco IP Phones Input verification vulnerability in
Trust: 0.8
sources:
JVNDB: JVNDB-2020-004772
DESCRIPTION
A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote attacker to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of proper input validation of HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web server of a targeted device. A successful exploit could allow the attacker to remotely execute code with root privileges or cause a reload of an affected IP phone, resulting in a DoS condition. Cisco IP Phones There is an input verification vulnerability in.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state. Cisco IP Phone 7811, etc. are all IP phones of the American company Cisco. There are input validation error vulnerabilities in the Web servers of many Cisco products
Trust: 2.25
sources:
NVD: CVE-2020-3161 //
JVNDB: JVNDB-2020-004772 //
CNVD: CNVD-2020-31998 //
VULMON: CVE-2020-3161
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2020-31998
AFFECTED PRODUCTS
| vendor: | cisco | model: | ip phone 7861 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 7841 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8861 | scope: | eq | version: | 11.0\(5\)sr1 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8851 | scope: | eq | version: | 11.0\(5\)sr1 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8865 | scope: | eq | version: | 11.0\(5\)sr1 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8845 | scope: | eq | version: | 10.3\(1\)es14 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8821 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8821-ex | scope: | eq | version: | 11.0\(5\)sr1 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8841 | scope: | eq | version: | 10.3\(1\)es14 | Trust: 1.0 |
| vendor: | cisco | model: | 8831 | scope: | eq | version: | 10.3\(1\)es14 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 7811 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8861 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8851 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8811 | scope: | eq | version: | 10.3\(1\)es14 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8821-ex | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | 8831 | scope: | eq | version: | 11.0\(5\)sr1 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8845 | scope: | eq | version: | 11.0\(5\)sr1 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8865 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8841 | scope: | eq | version: | 11.0\(5\)sr1 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8811 | scope: | eq | version: | 11.0\(5\)sr1 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 7821 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8845 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | 8831 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8841 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8821 | scope: | eq | version: | 10.3\(1\)es14 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8865 | scope: | eq | version: | 10.3\(1\)es14 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8811 | scope: | eq | version: | 11.0\(1\) | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8861 | scope: | eq | version: | 10.3\(1\)es14 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8821-ex | scope: | eq | version: | 10.3\(1\)es14 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8851 | scope: | eq | version: | 10.3\(1\)es14 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 8821 | scope: | eq | version: | 11.0\(5\)sr1 | Trust: 1.0 |
| vendor: | cisco | model: | ip phone 7811 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ip phone 7821 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ip phone 7841 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ip phone 7861 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ip phone 8811 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ip phone 8841 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ip phone 8845 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ip phone 8851 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ip phone 8861 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ip phone 8865 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ip phone | scope: | eq | version: | 7861 | Trust: 0.6 |
| vendor: | cisco | model: | ip phone | scope: | eq | version: | 7811 | Trust: 0.6 |
| vendor: | cisco | model: | ip phone | scope: | eq | version: | 7821 | Trust: 0.6 |
| vendor: | cisco | model: | ip phone | scope: | eq | version: | 7841 | Trust: 0.6 |
| vendor: | cisco | model: | ip phone | scope: | eq | version: | 8811 | Trust: 0.6 |
| vendor: | cisco | model: | ip phone | scope: | eq | version: | 8841 | Trust: 0.6 |
| vendor: | cisco | model: | ip phone | scope: | eq | version: | 8845 | Trust: 0.6 |
| vendor: | cisco | model: | ip phone | scope: | eq | version: | 8851 | Trust: 0.6 |
| vendor: | cisco | model: | ip phone | scope: | eq | version: | 8861 | Trust: 0.6 |
| vendor: | cisco | model: | ip phone | scope: | eq | version: | 8865 | Trust: 0.6 |
| vendor: | cisco | model: | unified ip conference phone | scope: | eq | version: | 8831 | Trust: 0.6 |
| vendor: | cisco | model: | wireless ip phone | scope: | eq | version: | 8821 | Trust: 0.6 |
| vendor: | cisco | model: | wireless ip phone 8821-ex | scope: | - | version: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2020-31998 //
JVNDB: JVNDB-2020-004772 //
NVD: CVE-2020-3161
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
CNVD: CNVD-2020-31998 //
VULMON: CVE-2020-3161 //
JVNDB: JVNDB-2020-004772 //
NVD: CVE-2020-3161 //
NVD: CVE-2020-3161 //
CNNVD: CNNVD-202004-1099
PROBLEMTYPE DATA
| problemtype: | CWE-20 | Trust: 1.8 |
sources:
JVNDB: JVNDB-2020-004772 //
NVD: CVE-2020-3161
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-202004-1099
TYPE
input validation error
Trust: 0.6
sources:
CNNVD: CNNVD-202004-1099
CONFIGURATIONS
sources:
NVD: CVE-2020-3161
PATCH
| title: | cisco-sa-voip-phones-rce-dos-rB6EeRXs | url: | https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-voip-phones-rce-dos-rb6eerxs | Trust: 0.8 |
| title: | Patch for Multiple Cisco product input verification error vulnerabilities (CNVD-2020-31998) | url: | https://www.cnvd.org.cn/patchinfo/show/220745 | Trust: 0.6 |
| title: | Multiple Cisco Product input verification error vulnerability fixes | url: | http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=117144 | Trust: 0.6 |
| title: | Cisco: Cisco IP Phones Web Server Remote Code Execution and Denial of Service Vulnerability | url: | https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts&qid=cisco-sa-voip-phones-rce-dos-rb6eerxs | Trust: 0.1 |
| title: | CVE-2020-3161 | url: | https://github.com/uromulouinthehouse/cve-2020-3161 | Trust: 0.1 |
| title: | CVE-2020-3161 | url: | https://github.com/abood05972/cve-2020-3161 | Trust: 0.1 |
| title: | CVE-2020-3161 | url: | https://github.com/uromulou/cve-2020-3161 | Trust: 0.1 |
| title: | CVE-2020-3161 | url: | https://github.com/urromulou/cve-2020-3161 | Trust: 0.1 |
| title: | CVE-2020-3161-REMAKE | url: | https://github.com/uromulou/cve-2020-3161-remake | Trust: 0.1 |
| title: | - | url: | https://github.com/soosmile/poc | Trust: 0.1 |
| title: | PoC | url: | https://github.com/jonathan-elias/poc | Trust: 0.1 |
| title: | PoC-in-GitHub | url: | https://github.com/developer3000s/poc-in-github | Trust: 0.1 |
| title: | PoC-in-GitHub | url: | https://github.com/hectorgie/poc-in-github | Trust: 0.1 |
| title: | Threatpost | url: | https://threatpost.com/critical-cisco-ip-phone-rce-flaw/154864/ | Trust: 0.1 |
sources:
CNVD: CNVD-2020-31998 //
VULMON: CVE-2020-3161 //
JVNDB: JVNDB-2020-004772 //
CNNVD: CNNVD-202004-1099
EXTERNAL IDS
| db: | NVD | id: | CVE-2020-3161 | Trust: 3.1 |
| db: | PACKETSTORM | id: | 157265 | Trust: 1.7 |
| db: | JVNDB | id: | JVNDB-2020-004772 | Trust: 0.8 |
| db: | CNVD | id: | CNVD-2020-31998 | Trust: 0.6 |
| db: | AUSCERT | id: | ESB-2020.1321.2 | Trust: 0.6 |
| db: | AUSCERT | id: | ESB-2020.1321 | Trust: 0.6 |
| db: | EXPLOIT-DB | id: | 48342 | Trust: 0.6 |
| db: | CNNVD | id: | CNNVD-202004-1099 | Trust: 0.6 |
| db: | VULMON | id: | CVE-2020-3161 | Trust: 0.1 |
sources:
CNVD: CNVD-2020-31998 //
VULMON: CVE-2020-3161 //
JVNDB: JVNDB-2020-004772 //
NVD: CVE-2020-3161 //
CNNVD: CNNVD-202004-1099
REFERENCES
| url: | https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-voip-phones-rce-dos-rb6eerxs | Trust: 2.4 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2020-3161 | Trust: 2.0 |
| url: | http://packetstormsecurity.com/files/157265/cisco-ip-phone-11.7-denial-of-service.html | Trust: 1.7 |
| url: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-3161 | Trust: 0.8 |
| url: | https://www.exploit-db.com/exploits/48342 | Trust: 0.6 |
| url: | https://vigilance.fr/vulnerability/cisco-ip-phone-code-execution-via-web-server-32043 | Trust: 0.6 |
| url: | https://www.auscert.org.au/bulletins/esb-2020.1321.2/ | Trust: 0.6 |
| url: | https://www.auscert.org.au/bulletins/esb-2020.1321/ | Trust: 0.6 |
| url: | https://cwe.mitre.org/data/definitions/20.html | Trust: 0.1 |
| url: | https://github.com/uromulouinthehouse/cve-2020-3161 | Trust: 0.1 |
| url: | https://github.com/abood05972/cve-2020-3161 | Trust: 0.1 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
sources:
CNVD: CNVD-2020-31998 //
VULMON: CVE-2020-3161 //
JVNDB: JVNDB-2020-004772 //
NVD: CVE-2020-3161 //
CNNVD: CNNVD-202004-1099
CREDITS
Jacob Baines
Trust: 0.6
sources:
CNNVD: CNNVD-202004-1099
SOURCES
| db: | CNVD | id: | CNVD-2020-31998 |
| db: | VULMON | id: | CVE-2020-3161 |
| db: | JVNDB | id: | JVNDB-2020-004772 |
| db: | NVD | id: | CVE-2020-3161 |
| db: | CNNVD | id: | CNNVD-202004-1099 |
LAST UPDATE DATE
2023-12-18T13:28:09.779000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2020-31998 | date: | 2020-06-09T00:00:00 |
| db: | VULMON | id: | CVE-2020-3161 | date: | 2021-08-12T00:00:00 |
| db: | JVNDB | id: | JVNDB-2020-004772 | date: | 2020-05-27T00:00:00 |
| db: | NVD | id: | CVE-2020-3161 | date: | 2021-08-12T18:19:39.917 |
| db: | CNNVD | id: | CNNVD-202004-1099 | date: | 2021-08-17T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2020-31998 | date: | 2020-06-09T00:00:00 |
| db: | VULMON | id: | CVE-2020-3161 | date: | 2020-04-15T00:00:00 |
| db: | JVNDB | id: | JVNDB-2020-004772 | date: | 2020-05-27T00:00:00 |
| db: | NVD | id: | CVE-2020-3161 | date: | 2020-04-15T20:15:15.097 |
| db: | CNNVD | id: | CNNVD-202004-1099 | date: | 2020-04-15T00:00:00 |