Vulnerability Details : CVE-2015-6403
The TFTP implementation on Cisco Small Business SPA30x, SPA50x, SPA51x phones 7.5.7 improperly validates firmware-image file integrity, which allows local users to load a Trojan horse image by leveraging shell access, aka Bug ID CSCut67400.
Vulnerability category: Input validation
Products affected by CVE-2015-6403
- cpe:2.3:o:cisco:spa300_firmware:7.5.7:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:spa500_firmware:7.5.7:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-6403
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-6403
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
CWE ids for CVE-2015-6403
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-6403
-
http://www.securitytracker.com/id/1034376
Cisco SPA30X, SPA50X, and SPA51X Series IP Phones File Integrity Check Flaw Lets Local Users Load Arbitrary Firmware Images - SecurityTracker
-
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-ipp
Multiple Cisco IP Phones Firmware Image Upload VulnerabilityVendor Advisory
-
http://www.securityfocus.com/bid/78739
Multiple Cisco IP Phones CVE-2015-6403 Local Arbitrary File Upload Vulnerability
Jump to