What is CVE-2019-1765?

CVE-2019-1765 is a high-severity vulnerability in Cisco Ip Conference Phone 8832 And The Rest Of 8800 Series, classified under Path Traversal. CVSS score: 8.1/10. Published 2019-03-22.

How severe is CVE-2019-1765?

High severity. CVSS v3 base score is 8.1 out of 10.

Path Traversal in Cisco Ip Conference Phone 8832 And The Rest Of 8800 Series

CVE-2019-1765

A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software for Cisco IP Phone 8800 Series could allow an authenticated, remote attacker to write arbitrary files to the filesystem. The vulnerability…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.014 (68.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.1 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H.

Affected products

Cisco Ip Conference Phone 8832 And The Rest Of 8800 Series — versions unspecified
Cisco Wireless Ip Phone 8821 And 8821-ex — versions unspecified
Cisco Ip_conference_phone_8832
Cisco Ip_conference_phone_8832_firmware
Cisco Ip_phone_8800
Cisco Ip_phone_8800_firmware
Cisco Ip_phone_8821
Cisco Ip_phone_8821-ex
Cisco Ip_phone_8821-ex_firmware
Cisco Ip_phone_8821_firmware

Weakness classification (CWE)

CWE-22 — Path Traversal

References

psirt@cisco.com (x_refsource_CISCO, vendor-advisory, Vendor Advisory)

Frequently asked questions

What is CVE-2019-1765?: CVE-2019-1765 is a high-severity vulnerability in Cisco Ip Conference Phone 8832 And The Rest Of 8800 Series, classified under Path Traversal. CVSS score: 8.1/10. Published 2019-03-22.
How severe is CVE-2019-1765?: High severity. CVSS v3 base score is 8.1 out of 10.