Cisco IP Phones 6800, 7800, and 8800 Series with Multiplatform Firmware Web UI Command Injection (CVE-2018-0341)

high Tenable OT Security Plugin ID 502141

Synopsis

The remote OT asset is affected by a vulnerability.

Description

A vulnerability in the web-based UI of Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware before 11.2(1) could allow an authenticated, remote attacker to perform a command injection and execute commands with the privileges of the web server. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by including arbitrary shell commands in a specific user input field. Cisco Bug IDs: CSCvi51426.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

Refer to the vendor advisory.

See Also

http://www.securitytracker.com/id/1041285

http://www.securityfocus.com/bid/104731

http://www.nessus.org/u?b6c78f36

Plugin Details

Severity: High

ID: 502141

Version: 1.1

Type: remote

Family: Tenable.ot

Published: 3/18/2024

Updated: 3/18/2024

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 9

Temporal Score: 6.7

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2018-0341

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:cisco:ip_phone_8800_series_firmware, cpe:/o:cisco:ip_phone_6800_series_firmware, cpe:/o:cisco:ip_phone_7800_series_firmware

Required KB Items: Tenable.ot/Cisco

Exploit Ease: No known exploits are available

Patch Publication Date: 7/16/2018

Vulnerability Publication Date: 7/16/2018

Reference Information

CVE: CVE-2018-0341

CWE: 78