CVE-2024-20451 - Vulnerability Details

Multiple vulnerabilities in the web-based management interface of Cisco Small Business SPA300 Series IP Phones and Cisco Small Business SPA500 Series IP Phones could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly. These vulnerabilities exist because HTTP packets are not properly checked for errors. An attacker could exploit this vulnerability by sending a crafted HTTP packet to the remote interface of an affected device. A successful exploit could allow the attacker to cause a DoS condition on the device.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Cisco	Spa 301 1 Line Ip Phone Spa 301 Firmware Spa 303 3 Line Ip Phone Spa 303 Firmware Spa 501g 8-line Ip Phone Spa 501g Firmware Spa 502g 1-line Ip Phone Spa 502g Firmware Spa 504g 4-line Ip Phone Spa 504g Firmware Spa 508g 8-line Ip Phone Spa 508g Firmware Spa 509g 12-line Ip Phone Spa 509g Firmware Spa 512g 1-line Ip Phone Spa 512g Firmware Spa 514g 4-line Ip Phone Spa 514g Firmware Spa 525g2 5-line Ip Phone Spa 525g2 Firmware Spa 525g 5-line Ip Phone Spa 525g Firmware

Configuration 1 [-]

AND

cpe:2.3:o:cisco:spa_301_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:spa_301_1_line_ip_phone:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:cisco:spa_303_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:spa_303_3_line_ip_phone:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:cisco:spa_501g_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:spa_501g_8-line_ip_phone:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:cisco:spa_502g_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:spa_502g_1-line_ip_phone:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:cisco:spa_504g_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:spa_504g_4-line_ip_phone:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:cisco:spa_508g_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:spa_508g_8-line_ip_phone:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:cisco:spa_509g_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:spa_509g_12-line_ip_phone:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:cisco:spa_512g_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:spa_512g_1-line_ip_phone:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:cisco:spa_514g_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:spa_514g_4-line_ip_phone:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:cisco:spa_525g_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:spa_525g_5-line_ip_phone:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:cisco:spa_525g2_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:spa_525g2_5-line_ip_phone:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-spa-http-vulns-RJZmX2Xz

History

Fri, 23 Aug 2024 18:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Cisco Cisco spa 301 1 Line Ip Phone Cisco spa 301 Firmware Cisco spa 303 3 Line Ip Phone Cisco spa 303 Firmware Cisco spa 501g 8-line Ip Phone Cisco spa 501g Firmware Cisco spa 502g 1-line Ip Phone Cisco spa 502g Firmware Cisco spa 504g 4-line Ip Phone Cisco spa 504g Firmware Cisco spa 508g 8-line Ip Phone Cisco spa 508g Firmware Cisco spa 509g 12-line Ip Phone Cisco spa 509g Firmware Cisco spa 512g 1-line Ip Phone Cisco spa 512g Firmware Cisco spa 514g 4-line Ip Phone Cisco spa 514g Firmware Cisco spa 525g2 5-line Ip Phone Cisco spa 525g2 Firmware Cisco spa 525g 5-line Ip Phone Cisco spa 525g Firmware
Weaknesses		NVD-CWE-noinfo
CPEs		cpe:2.3:h:cisco:spa_301_1_line_ip_phone:-:::::::* cpe:2.3:h:cisco:spa_303_3_line_ip_phone:-:::::::* cpe:2.3:h:cisco:spa_501g_8-line_ip_phone:-:::::::* cpe:2.3:h:cisco:spa_502g_1-line_ip_phone:-:::::::* cpe:2.3:h:cisco:spa_504g_4-line_ip_phone:-:::::::* cpe:2.3:h:cisco:spa_508g_8-line_ip_phone:-:::::::* cpe:2.3:h:cisco:spa_509g_12-line_ip_phone:-:::::::* cpe:2.3:h:cisco:spa_512g_1-line_ip_phone:-:::::::* cpe:2.3:h:cisco:spa_514g_4-line_ip_phone:-:::::::* cpe:2.3:h:cisco:spa_525g2_5-line_ip_phone:-:::::::* cpe:2.3:h:cisco:spa_525g_5-line_ip_phone:-:::::::* cpe:2.3:o:cisco:spa_301_firmware:::::::: cpe:2.3:o:cisco:spa_303_firmware:::::::: cpe:2.3:o:cisco:spa_501g_firmware:::::::: cpe:2.3:o:cisco:spa_502g_firmware:::::::: cpe:2.3:o:cisco:spa_504g_firmware:::::::: cpe:2.3:o:cisco:spa_508g_firmware:::::::: cpe:2.3:o:cisco:spa_509g_firmware:::::::: cpe:2.3:o:cisco:spa_512g_firmware:::::::: cpe:2.3:o:cisco:spa_514g_firmware:::::::: cpe:2.3:o:cisco:spa_525g2_firmware:::::::: cpe:2.3:o:cisco:spa_525g_firmware::::::::
Vendors & Products		Cisco Cisco spa 301 1 Line Ip Phone Cisco spa 301 Firmware Cisco spa 303 3 Line Ip Phone Cisco spa 303 Firmware Cisco spa 501g 8-line Ip Phone Cisco spa 501g Firmware Cisco spa 502g 1-line Ip Phone Cisco spa 502g Firmware Cisco spa 504g 4-line Ip Phone Cisco spa 504g Firmware Cisco spa 508g 8-line Ip Phone Cisco spa 508g Firmware Cisco spa 509g 12-line Ip Phone Cisco spa 509g Firmware Cisco spa 512g 1-line Ip Phone Cisco spa 512g Firmware Cisco spa 514g 4-line Ip Phone Cisco spa 514g Firmware Cisco spa 525g2 5-line Ip Phone Cisco spa 525g2 Firmware Cisco spa 525g 5-line Ip Phone Cisco spa 525g Firmware

Wed, 07 Aug 2024 18:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 07 Aug 2024 17:00:00 +0000

Type	Values Removed	Values Added
Description		Multiple vulnerabilities in the web-based management interface of Cisco Small Business SPA300 Series IP Phones and Cisco Small Business SPA500 Series IP Phones could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly. These vulnerabilities exist because HTTP packets are not properly checked for errors. An attacker could exploit this vulnerability by sending a crafted HTTP packet to the remote interface of an affected device. A successful exploit could allow the attacker to cause a DoS condition on the device.
Weaknesses		CWE-120
References		https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-spa-http-vulns-RJZmX2Xz
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}`

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2024-08-07T16:48:37.184Z

Updated: 2024-08-07T17:24:11.420Z

Reserved: 2023-11-08T15:08:07.679Z

Link: CVE-2024-20451

Vulnrichment

Updated: 2024-08-07T17:24:03.833Z

NVD

Status : Analyzed

Published: 2024-08-07T17:15:50.493

Modified: 2024-08-23T18:14:11.137

Link: CVE-2024-20451

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object