var-201905-0503
Vulnerability from variot
A vulnerability in the call-handling functionality of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to cause an affected phone to reload unexpectedly, resulting in a temporary denial of service (DoS) condition. The vulnerability is due to incomplete error handling when XML data within a SIP packet is parsed. An attacker could exploit this vulnerability by sending a SIP packet that contains a malicious XML payload to an affected phone. A successful exploit could allow the attacker to cause the affected phone to reload unexpectedly, resulting in a temporary DoS condition. Multiple Cisco Products are prone to an denial-of-service vulnerability. This issue is being tracked by Cisco Bug IDs CSCvm39405, CSCvo19825, CSCvo21348, and CSCvo23532. This issue affects following cisco products if they are running a SIP Software release prior to the first fixed release. IP Conference Phone 7832 IP Conference Phone 8832 IP Phone 7811 IP Phone 7821 IP Phone 7841 IP Phone 7861 IP Phone 8811 IP Phone 8841 IP Phone 8845 IP Phone 8851 IP Phone 8861 IP Phone 8865 Unified IP 8831 Conference Phone1 Unified IP 8831 Conference Phone for Third-Party Call Control2 Wireless IP Phone 8821 Wireless IP Phone 8821-EX. This vulnerability stems from improper management of system resources (such as memory, disk space, files, etc.) by network systems or products
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201905-0503",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "ip phone 7821",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip phone 8845",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip phone 8841",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip conference phone 8832",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "ip phone 8811",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "unified ip 8831 conference phone for third-party call control2",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 7811",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "unified ip 8831 conference phone for third-party call control2",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip phone 8861",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "ip phone 8811",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip phone 8851",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "wireless ip phone 8821",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip phone 7841",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 7861",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 7861",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "unified ip 8831 conference phone1",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 7841",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip conference phone 8832",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "unified ip 8831 conference phone1",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "wireless ip phone 8821-ex",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 7811",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip phone 8865",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 8861",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip phone 8811",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "ip phone 8851",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "unified ip 8831 conference phone for third-party call control2",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "wireless ip phone 8821-ex",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip conference phone 7832",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 8865",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip conference phone 7832",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip phone 7821",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 8845",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 7821",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip phone 7861",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "ip phone 8841",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 7841",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "unified ip 8831 conference phone1",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "ip phone 8845",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip phone 8811",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip phone 8841",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "unified ip 8831 conference phone for third-party call control2",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "wireless ip phone 8821",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "wireless ip phone 8821-ex",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "wireless ip phone 8821",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip phone 8865",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "ip phone 7861",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip conference phone 7832",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "ip conference phone 8832",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 7841",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "unified ip 8831 conference phone1",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip conference phone 8832",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip phone 7821",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "ip phone 8845",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "ip phone 8841",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "ip phone 7811",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 8861",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "wireless ip phone 8821-ex",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip phone 8851",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(4\\)sr2"
},
{
"model": "ip phone 8861",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip phone 8865",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip phone 7811",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "wireless ip phone 8821",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.1\\(1\\)sr1"
},
{
"model": "ip phone 8851",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "10.3\\(1\\)sr4b"
},
{
"model": "ip conference phone 7832",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "9.3\\(4\\)sr3"
},
{
"model": "ip conference phone 7832",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ip conference phone 8832",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ip phone 7811",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ip phone 7821",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ip phone 7841",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ip phone 7861",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ip phone 8811",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ip phone 8841",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ip phone 8845",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ip phone 8851",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "wireless ip phone 8821-ex",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "wireless ip phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "88210"
},
{
"model": "unified ip conference phone for third-party call control",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "88310"
},
{
"model": "unified ip conference phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "88310"
},
{
"model": "small business ip phones 9.3 sr3",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "ip phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "88650"
},
{
"model": "ip phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "88610"
},
{
"model": "ip phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "88510"
},
{
"model": "ip phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "88450"
},
{
"model": "ip phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "88410"
},
{
"model": "ip phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "88110"
},
{
"model": "ip phone series 12.1 sr1",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "8800"
},
{
"model": "ip phone series 11.0 sr2",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "8800"
},
{
"model": "ip phone series 10.3 sr4b",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "8800"
},
{
"model": "ip phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "78610"
},
{
"model": "ip phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "78410"
},
{
"model": "ip phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "78210"
},
{
"model": "ip phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "78110"
},
{
"model": "ip conference phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "88320"
},
{
"model": "ip conference phone",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "78320"
},
{
"model": "wireless ip phone 8821-ex",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "11.0(5)"
},
{
"model": "wireless ip phone",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "882111.0(5)"
},
{
"model": "ip phone series",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "880012.5(1.16)"
},
{
"model": "ip phone series 12.5 mn474",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "8800"
},
{
"model": "ip phone series 12.5 mn470",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "8800"
},
{
"model": "ip phone series",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "880012.5(1)"
},
{
"model": "ip phone series 12.1 es9",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "8800"
},
{
"model": "ip phone series",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "880011.0(5.9)"
},
{
"model": "ip phone series",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "880011.0(5)"
},
{
"model": "ip phone series 11.0 mn50",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "8800"
},
{
"model": "ip phone series",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "780012.5(1)"
}
],
"sources": [
{
"db": "BID",
"id": "108138"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004369"
},
{
"db": "NVD",
"id": "CVE-2019-1635"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_conference_phone_7832_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_conference_phone_7832_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_conference_phone_7832_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_conference_phone_7832_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_conference_phone_7832:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_conference_phone_8832_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_conference_phone_8832_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_conference_phone_8832_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_conference_phone_8832_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_conference_phone_8832:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7811_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7811_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7811_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7811_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_phone_7811:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7821_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7821_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7821_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7821_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_phone_7821:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7841_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7841_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7841_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7841_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_phone_7841:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7861_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7861_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7861_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_7861_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_phone_7861:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8811_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8811_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8811_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8811_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_phone_8811:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8841_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8841_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8841_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8841_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_phone_8841:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8845_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8845_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8845_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8845_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_phone_8845:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8851_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8851_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8851_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8851_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_phone_8851:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8861_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8861_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8861_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8861_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_phone_8861:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8865_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8865_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8865_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ip_phone_8865_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:ip_phone_8865:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:unified_ip_8831_conference_phone1_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:unified_ip_8831_conference_phone1_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:unified_ip_8831_conference_phone1_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:unified_ip_8831_conference_phone1_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:unified_ip_8831_conference_phone1:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:unified_ip_8831_conference_phone_for_third-party_call_control2_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:unified_ip_8831_conference_phone_for_third-party_call_control2_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:unified_ip_8831_conference_phone_for_third-party_call_control2_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:unified_ip_8831_conference_phone_for_third-party_call_control2_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:unified_ip_8831_conference_phone_for_third-party_call_control2:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:wireless_ip_phone_8821_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:wireless_ip_phone_8821_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:wireless_ip_phone_8821_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:wireless_ip_phone_8821_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:wireless_ip_phone_8821:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:wireless_ip_phone_8821-ex_firmware:12.1\\(1\\)sr1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:wireless_ip_phone_8821-ex_firmware:10.3\\(1\\)sr4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:wireless_ip_phone_8821-ex_firmware:11.0\\(4\\)sr2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:wireless_ip_phone_8821-ex_firmware:9.3\\(4\\)sr3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:wireless_ip_phone_8821-ex:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2019-1635"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The vendor reported this issue.",
"sources": [
{
"db": "BID",
"id": "108138"
}
],
"trust": 0.3
},
"cve": "CVE-2019-1635",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Complete",
"baseScore": 7.8,
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2019-1635",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "High",
"trust": 0.9,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "VHN-148487",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "NVD",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "ykramarz@cisco.com",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 7.5,
"baseSeverity": "High",
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2019-1635",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2019-1635",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "ykramarz@cisco.com",
"id": "CVE-2019-1635",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201905-022",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-148487",
"trust": 0.1,
"value": "HIGH"
},
{
"author": "VULMON",
"id": "CVE-2019-1635",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-148487"
},
{
"db": "VULMON",
"id": "CVE-2019-1635"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004369"
},
{
"db": "NVD",
"id": "CVE-2019-1635"
},
{
"db": "NVD",
"id": "CVE-2019-1635"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-022"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability in the call-handling functionality of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to cause an affected phone to reload unexpectedly, resulting in a temporary denial of service (DoS) condition. The vulnerability is due to incomplete error handling when XML data within a SIP packet is parsed. An attacker could exploit this vulnerability by sending a SIP packet that contains a malicious XML payload to an affected phone. A successful exploit could allow the attacker to cause the affected phone to reload unexpectedly, resulting in a temporary DoS condition. Multiple Cisco Products are prone to an denial-of-service vulnerability. \nThis issue is being tracked by Cisco Bug IDs CSCvm39405, CSCvo19825, CSCvo21348, and CSCvo23532. \nThis issue affects following cisco products if they are running a SIP Software release prior to the first fixed release. \nIP Conference Phone 7832\nIP Conference Phone 8832\nIP Phone 7811\nIP Phone 7821\nIP Phone 7841\nIP Phone 7861\nIP Phone 8811\nIP Phone 8841\nIP Phone 8845\nIP Phone 8851\nIP Phone 8861\nIP Phone 8865\nUnified IP 8831 Conference Phone1\nUnified IP 8831 Conference Phone for Third-Party Call Control2\nWireless IP Phone 8821\nWireless IP Phone 8821-EX. This vulnerability stems from improper management of system resources (such as memory, disk space, files, etc.) by network systems or products",
"sources": [
{
"db": "NVD",
"id": "CVE-2019-1635"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004369"
},
{
"db": "BID",
"id": "108138"
},
{
"db": "VULHUB",
"id": "VHN-148487"
},
{
"db": "VULMON",
"id": "CVE-2019-1635"
}
],
"trust": 2.07
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2019-1635",
"trust": 2.9
},
{
"db": "BID",
"id": "108138",
"trust": 1.1
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004369",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201905-022",
"trust": 0.7
},
{
"db": "AUSCERT",
"id": "ESB-2019.1521",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-148487",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2019-1635",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-148487"
},
{
"db": "VULMON",
"id": "CVE-2019-1635"
},
{
"db": "BID",
"id": "108138"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004369"
},
{
"db": "NVD",
"id": "CVE-2019-1635"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-022"
}
]
},
"id": "VAR-201905-0503",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-148487"
}
],
"trust": 0.47675563
},
"last_update_date": "2023-12-18T14:00:58.114000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "cisco-sa-20190501-phone-sip-xml-dos",
"trust": 0.8,
"url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190501-phone-sip-xml-dos"
},
{
"title": "Cisco IP Phone 7800 Series and 8800 Series Session Initiation Protocol Software Remediation of resource management error vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=92173"
},
{
"title": "Cisco: Cisco IP Phone 7800 Series and 8800 Series Session Initiation Protocol XML Denial of Service Vulnerability",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-20190501-phone-sip-xml-dos"
},
{
"title": "Threatpost",
"trust": 0.1,
"url": "https://threatpost.com/cisco-critical-nexus-9000-flaw/144290/"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2019-1635"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004369"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-022"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-755",
"trust": 1.1
},
{
"problemtype": "CWE-388",
"trust": 0.9
},
{
"problemtype": "CWE-399",
"trust": 0.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-148487"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004369"
},
{
"db": "NVD",
"id": "CVE-2019-1635"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.2,
"url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190501-phone-sip-xml-dos"
},
{
"trust": 1.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-1635"
},
{
"trust": 0.9,
"url": "http://www.cisco.com/"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-1635"
},
{
"trust": 0.7,
"url": "https://www.securityfocus.com/bid/108138"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/80122"
},
{
"trust": 0.6,
"url": "https://vigilance.fr/vulnerability/cisco-ip-phone-denial-of-service-via-sip-xml-29188"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/755.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://threatpost.com/cisco-critical-nexus-9000-flaw/144290/"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-148487"
},
{
"db": "VULMON",
"id": "CVE-2019-1635"
},
{
"db": "BID",
"id": "108138"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004369"
},
{
"db": "NVD",
"id": "CVE-2019-1635"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-022"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-148487"
},
{
"db": "VULMON",
"id": "CVE-2019-1635"
},
{
"db": "BID",
"id": "108138"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-004369"
},
{
"db": "NVD",
"id": "CVE-2019-1635"
},
{
"db": "CNNVD",
"id": "CNNVD-201905-022"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-05-03T00:00:00",
"db": "VULHUB",
"id": "VHN-148487"
},
{
"date": "2019-05-03T00:00:00",
"db": "VULMON",
"id": "CVE-2019-1635"
},
{
"date": "2019-05-01T00:00:00",
"db": "BID",
"id": "108138"
},
{
"date": "2019-05-31T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2019-004369"
},
{
"date": "2019-05-03T15:29:00.713000",
"db": "NVD",
"id": "CVE-2019-1635"
},
{
"date": "2019-05-01T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201905-022"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2020-10-16T00:00:00",
"db": "VULHUB",
"id": "VHN-148487"
},
{
"date": "2020-10-16T00:00:00",
"db": "VULMON",
"id": "CVE-2019-1635"
},
{
"date": "2019-05-01T00:00:00",
"db": "BID",
"id": "108138"
},
{
"date": "2019-05-31T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2019-004369"
},
{
"date": "2020-10-16T13:00:59.703000",
"db": "NVD",
"id": "CVE-2019-1635"
},
{
"date": "2019-05-09T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201905-022"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201905-022"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco IP Phone 7800 and 8800 Series error handling vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2019-004369"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "resource management error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201905-022"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.