What is CVE-2019-1635?

CVE-2019-1635 is a high-severity vulnerability in Cisco Ip Phone 7800 Series And 8800, classified under CWE-399. CVSS score: 7.5/10. Published 2019-05-03.

How severe is CVE-2019-1635?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Cisco Ip Phone 7800 Series And 8800

CVE-2019-1635

A vulnerability in the call-handling functionality of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to cause an affected phone to reload unexpected…

EPSS: 0.020 (77.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Cisco Ip Phone 7800 Series And 8800 — versions unspecified
Cisco Wireless Ip Phone 8821 And 8821-ex — versions unspecified
Cisco Ip_conference_phone_7832
Cisco Ip_conference_phone_7832_firmware — versions 9.3\(4\)sr3, 10.3\(1\)sr4b, 11.0\(4\)sr2
Cisco Ip_conference_phone_8832
Cisco Ip_conference_phone_8832_firmware — versions 9.3\(4\)sr3, 10.3\(1\)sr4b, 11.0\(4\)sr2
Cisco Ip_phone_7811
Cisco Ip_phone_7811_firmware — versions 9.3\(4\)sr3, 10.3\(1\)sr4b, 11.0\(4\)sr2
Cisco Ip_phone_7821
Cisco Ip_phone_7821_firmware — versions 9.3\(4\)sr3, 10.3\(1\)sr4b, 11.0\(4\)sr2

Weakness classification (CWE)

References

psirt@cisco.com (x_refsource_CISCO, vendor-advisory, Vendor Advisory)

Frequently asked questions

What is CVE-2019-1635?: CVE-2019-1635 is a high-severity vulnerability in Cisco Ip Phone 7800 Series And 8800, classified under CWE-399. CVSS score: 7.5/10. Published 2019-05-03.
How severe is CVE-2019-1635?: High severity. CVSS v3 base score is 7.5 out of 10.