Details of VAR-201502-0138

ID

VAR-201502-0138

CVE

CVE-2015-0604

TITLE

Cisco Unified IP 9900 phones Of firmware Web Framework uploading file vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2015-001530

DESCRIPTION

The web framework on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to upload files to arbitrary locations on a phone's filesystem via crafted HTTP requests, aka Bug ID CSCup90424. Vendors have confirmed this vulnerability Bug ID CSCup90424 It is released as.Skillfully crafted by a third party HTTP Via a request, a file may be uploaded to any location in the phone's file system. The Cisco Unified IP Phone 9900 is a 9900 series IP telephony terminal device from Cisco. The device provides voice, video and other functions. This may aid in further attacks. This issue is tracked by Cisco Bug ID CSCup90424

Trust: 2.52

sources: NVD: CVE-2015-0604 // JVNDB: JVNDB-2015-001530 // CNVD: CNVD-2015-00919 // BID: 72485 // VULHUB: VHN-78550

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2015-00919

AFFECTED PRODUCTS

vendor:	cisco	model:	unified ip phones 9971	scope:	eq	version:	9.4\(.1\)	Trust: 1.6
vendor:	cisco	model:	unified ip phones 9951	scope:	eq	version:	9.4\(.1\)	Trust: 1.6
vendor:	cisco	model:	unified ip phone 9900 series	scope:	lte	version:	9.4(.1)	Trust: 0.8
vendor:	cisco	model:	unified ip phone 9951	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	unified ip phone 9971	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	unified ip phones series	scope:	eq	version:	9900	Trust: 0.6

sources: CNVD: CNVD-2015-00919 // JVNDB: JVNDB-2015-001530 // CNNVD: CNNVD-201502-087 // NVD: CVE-2015-0604

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-0604
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2015-0604
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2015-00919
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201502-087
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-78550
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2015-0604
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2015-00919
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-78550
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CNVD: CNVD-2015-00919 // VULHUB: VHN-78550 // JVNDB: JVNDB-2015-001530 // CNNVD: CNNVD-201502-087 // NVD: CVE-2015-0604

PROBLEMTYPE DATA

problemtype:

CWE-20

Trust: 1.9

sources: VULHUB: VHN-78550 // JVNDB: JVNDB-2015-001530 // NVD: CVE-2015-0604

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201502-087

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-201502-087

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-001530

PATCH

title:	Cisco Unified IP Phone 9900 Series Arbitrary File Upload Vulnerability	url:	http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0604	Trust: 0.8
title:	37346	url:	http://tools.cisco.com/security/center/viewAlert.x?alertId=37346	Trust: 0.8
title:	Patch for Cisco Unified IP Phones 9900 Series Arbitrary File Upload Vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/55055	Trust: 0.6

sources: CNVD: CNVD-2015-00919 // JVNDB: JVNDB-2015-001530

EXTERNAL IDS

db:	NVD	id:	CVE-2015-0604	Trust: 3.4
db:	BID	id:	72485	Trust: 2.6
db:	SECUNIA	id:	62761	Trust: 1.1
db:	JVNDB	id:	JVNDB-2015-001530	Trust: 0.8
db:	CNNVD	id:	CNNVD-201502-087	Trust: 0.7
db:	CNVD	id:	CNVD-2015-00919	Trust: 0.6
db:	VULHUB	id:	VHN-78550	Trust: 0.1

sources: CNVD: CNVD-2015-00919 // VULHUB: VHN-78550 // BID: 72485 // JVNDB: JVNDB-2015-001530 // CNNVD: CNNVD-201502-087 // NVD: CVE-2015-0604

REFERENCES

url:	http://www.securityfocus.com/bid/72485	Trust: 2.3
url:	http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2015-0604	Trust: 1.7
url:	http://tools.cisco.com/security/center/viewalert.x?alertid=37346	Trust: 1.7
url:	http://secunia.com/advisories/62761	Trust: 1.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/100620	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0604	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0604	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3

sources: CNVD: CNVD-2015-00919 // VULHUB: VHN-78550 // BID: 72485 // JVNDB: JVNDB-2015-001530 // CNNVD: CNNVD-201502-087 // NVD: CVE-2015-0604

CREDITS

Cisco

Trust: 0.9

sources: BID: 72485 // CNNVD: CNNVD-201502-087

SOURCES

db:	CNVD	id:	CNVD-2015-00919
db:	VULHUB	id:	VHN-78550
db:	BID	id:	72485
db:	JVNDB	id:	JVNDB-2015-001530
db:	CNNVD	id:	CNNVD-201502-087
db:	NVD	id:	CVE-2015-0604

LAST UPDATE DATE

2024-11-23T22:52:48.826000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2015-00919	date:	2015-02-06T00:00:00
db:	VULHUB	id:	VHN-78550	date:	2017-09-08T00:00:00
db:	BID	id:	72485	date:	2015-02-09T00:01:00
db:	JVNDB	id:	JVNDB-2015-001530	date:	2015-02-19T00:00:00
db:	CNNVD	id:	CNNVD-201502-087	date:	2015-02-09T00:00:00
db:	NVD	id:	CVE-2015-0604	date:	2024-11-21T02:23:23.750

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2015-00919	date:	2015-02-06T00:00:00
db:	VULHUB	id:	VHN-78550	date:	2015-02-07T00:00:00
db:	BID	id:	72485	date:	2015-02-04T00:00:00
db:	JVNDB	id:	JVNDB-2015-001530	date:	2015-02-19T00:00:00
db:	CNNVD	id:	CNNVD-201502-087	date:	2015-02-05T00:00:00
db:	NVD	id:	CVE-2015-0604	date:	2015-02-07T04:59:07.797