CVE-2020-3161

⚠ KEVEPSS 87.1%

Cisco IP Phones Web Server Remote Code Execution and Denial-of-Service Vulnerability

Added to CISA KEV: 11/3/2021

Description

Cisco IP Phones contain an improper input validation vulnerability for HTTP requests. Exploitation could allow an attacker to execute code remotely with root privileges or cause a denial-of-service (DoS) condition.

Affected packages (0)

No package mapping in OSV.