Cisco Small Business IP Phones Vulnerabilities: Attackers Can Execute Arbitrary Commands

Cisco has disclosed extra than one serious vulnerabilities affecting its Dinky Commerce SPA300 and SPA500 Sequence IP Telephones, potentially allowing attackers to attain arbitrary commands with root privileges or space off denial of provider stipulations.

The flaws, which had been assigned CVE identifiers CVE-2024-20450, CVE-2024-20451, CVE-2024-20452, CVE-2024-20453, and CVE-2024-20454, exist within the rep-basically basically based management interface of these gadgets.

The most severe vulnerabilities (CVE-2024-20450, CVE-2024-20452, and CVE-2024-20454) would possibly well also allow an unauthenticated, remote attacker to attain arbitrary commands on the underlying working machine with root privileges.

These flaws stem from rotten error checking of incoming HTTP packets, which would possibly well also end result in a buffer overflow. An attacker would possibly well also exploit this by sending a crafted HTTP request to an affected utility.

Are you from SOC and DFIR Teams? Analyse Malware Incidents & get live Access with ANY.RUN -> Get 14 Days Free Access

CVE-2024-20451 and CVE-2024-20453 would possibly well also furthermore allow an unauthenticated, remote attacker to space off an affected utility to reload , ensuing in a denial of provider (DoS) situation.

The vulnerabilities had been assigned a Serious severity rating, with a CVSS Heinous Score of 9.8 for the arbitrary picture execution flaws and 7.5 for the DoS vulnerabilities.

Cisco has acknowledged this could well also no longer release utility updates to deal with these vulnerabilities, as the affected products have entered the discontinue-of-life process. The firm advises potentialities to refer to the discontinue-of-life notices for these products and remember utility migration.

It’s considerable to point to that no workarounds are at the moment readily available to deal with these vulnerabilities. Organizations the exercise of Cisco Dinky Commerce SPA300 and SPA500 Sequence IP Telephones ought to evaluate their probability and remember changing these gadgets with supported that you just would possibly perchance additionally deem picks.

Aidan of BAE Methods Digital Intelligence reported the vulnerabilities to Cisco. For the time being, Cisco is unaware of any public announcements or malicious exercise of these vulnerabilities within the wild.