CVE-2019-15247

Published: Oct 16, 2019Modified: Nov 21, 2024

8.0

Vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.1 / Impact: 5.9

Source: NVD

Description

Multiple vulnerabilities in Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, adjacent attacker to execute arbitrary code with elevated privileges. The vulnerabilities are due to improper validation of user-supplied input to the web-based management interface. An attacker could exploit these vulnerabilities by authenticating to the web-based management interface and sending crafted requests to an affected device. A successful exploit could allow the attacker to execute arbitrary code with elevated privileges. Note: The web-based management interface is enabled by default.

Affected (12)

Products: Cisco: Spa112 Firmware, Spa122 Firmware

Cisco

2 products

Spa112 Firmware

Spa122 Firmware

Configuration A

6 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Spa112 Firmware	Before 1.4.1
Cisco Spa112 Firmware	Version 1.4.1
Cisco Spa112 Firmware	Version 1.4.1 sr1
Cisco Spa112 Firmware	Version 1.4.1 sr2
Cisco Spa112 Firmware	Version 1.4.1 sr3
Cisco Spa112 Firmware	Version 1.4.1 sr4

Running on/with	Platform Versions
Cisco Spa112	All versions

Configuration B

6 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Spa122 Firmware	Before 1.4.1
Cisco Spa122 Firmware	Version 1.4.1
Cisco Spa122 Firmware	Version 1.4.1 sr1
Cisco Spa122 Firmware	Version 1.4.1 sr2
Cisco Spa122 Firmware	Version 1.4.1 sr3
Cisco Spa122 Firmware	Version 1.4.1 sr4

Running on/with	Platform Versions
Cisco Spa122	All versions

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (2)

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191016-spa-rce

Source: psirt@cisco.com

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191016-spa-rce

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.