Cisco Small Business SPA300 and SPA500 Series IP Phones Local Code Execution (CVE-2014-3312)

medium Tenable OT Security Plugin ID 502755

Synopsis

The remote OT asset is affected by a vulnerability.

Description

The debug console interface on Cisco Small Business SPA300 and SPA500 phones does not properly perform authentication, which allows local users to execute arbitrary debug-shell commands, or read or modify data in memory or a filesystem, via direct access to this interface, aka Bug ID CSCun77435.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

Refer to the vendor advisory.

Plugin Details

Severity: Medium

ID: 502755

Version: 1.2

Type: remote

Family: Tenable.ot

Published: 12/4/2024

Updated: 12/5/2024

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.9

Temporal Score: 5.1

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2014-3312

Vulnerability Information

CPE: cpe:/h:cisco:spa_502g_1-line_ip_phone, cpe:/h:cisco:spa_514g_4-line_ip_phone, cpe:/h:cisco:spa962_6-line_ip_phone_with_2-port_switch, cpe:/h:cisco:spa_301_1_line_ip_phone, cpe:/h:cisco:spa_512g_1-line_ip_phone, cpe:/h:cisco:spa_525g_5-line_ip_phone, cpe:/h:cisco:spa_508g_8-line_ip_phone, cpe:/h:cisco:spa_509g_12-line_ip_phone, cpe:/h:cisco:spa942_4-line_ip_phone_with_2-port_switch, cpe:/h:cisco:spa_525g2_5-line_ip_phone, cpe:/h:cisco:spa_303_3_line_ip_phone, cpe:/h:cisco:spa901_1-line_ip_phone, cpe:/h:cisco:spa_504g_4-line_ip_phone, cpe:/h:cisco:spa922_1-line_ip_phone_with_1-port_ethernet, cpe:/h:cisco:spa941_4-line_ip_phone_with_1-port_ethernet, cpe:/h:cisco:spa_501g_8-line_ip_phone

Required KB Items: Tenable.ot/Cisco

Exploit Ease: No known exploits are available

Patch Publication Date: 7/9/2014

Vulnerability Publication Date: 7/9/2014

Reference Information

CVE: CVE-2014-3312

CWE: 287

Detections

Analytics