Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2019-1635

A vulnerability in the call-handling functionality of Session Initiation Protocol (SIP) Software for Cisco IP Phone 7800 Series and 8800 Series could allow an unauthenticated, remote attacker to cause an affected phone to reload unexpectedly, resulting in a temporary denial of service (DoS) condition. The vulnerability is due to incomplete error handling when XML data within a SIP packet is parsed. An attacker could exploit this vulnerability by sending a SIP packet that contains a malicious XML payload to an affected phone. A successful exploit could allow the attacker to cause the affected phone to reload unexpectedly, resulting in a temporary DoS condition.

  • Published: May 3, 2019
  • Updated: Apr 13, 2023
  • CVE: CVE-2019-1635
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

  • Severity: High
  • Score: 7.8
  • AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

Software From Fixed in
cisco / ip_conference_phone_7832_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_conference_phone_7832_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_conference_phone_7832_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_conference_phone_7832_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / ip_conference_phone_8832_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_conference_phone_8832_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_conference_phone_8832_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_conference_phone_8832_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / ip_phone_7811_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_phone_7811_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_phone_7811_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_phone_7811_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / ip_phone_7821_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_phone_7821_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_phone_7821_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_phone_7821_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / ip_phone_7841_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_phone_7841_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_phone_7841_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_phone_7841_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / ip_phone_7861_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_phone_7861_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_phone_7861_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_phone_7861_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / ip_phone_8811_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_phone_8811_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_phone_8811_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_phone_8811_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / ip_phone_8841_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_phone_8841_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_phone_8841_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_phone_8841_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / ip_phone_8845_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_phone_8845_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_phone_8845_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_phone_8845_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / ip_phone_8851_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_phone_8851_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_phone_8851_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_phone_8851_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / ip_phone_8861_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_phone_8861_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_phone_8861_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_phone_8861_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / ip_phone_8865_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / ip_phone_8865_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / ip_phone_8865_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / ip_phone_8865_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / unified_ip_8831_conference_phone1_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / unified_ip_8831_conference_phone1_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / unified_ip_8831_conference_phone1_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / unified_ip_8831_conference_phone1_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / unified_ip_8831_conference_phone_for_third-party_call_control2_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / unified_ip_8831_conference_phone_for_third-party_call_control2_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / unified_ip_8831_conference_phone_for_third-party_call_control2_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / unified_ip_8831_conference_phone_for_third-party_call_control2_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / wireless_ip_phone_8821_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / wireless_ip_phone_8821_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / wireless_ip_phone_8821_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / wireless_ip_phone_8821_firmware 12.1(1)sr1 12.1(1)sr1.x
cisco / wireless_ip_phone_8821-ex_firmware 9.3(4)sr3 9.3(4)sr3.x
cisco / wireless_ip_phone_8821-ex_firmware 10.3(1)sr4b 10.3(1)sr4b.x
cisco / wireless_ip_phone_8821-ex_firmware 11.0(4)sr2 11.0(4)sr2.x
cisco / wireless_ip_phone_8821-ex_firmware 12.1(1)sr1 12.1(1)sr1.x