Vulnerability identifier: #VU26976

Vulnerability risk: High

CVSSv3.1: 9.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H/RL:O/RC:C]

CVE-ID: CVE-2020-3161

CWE-ID: CWE-20

Exploitation vector: Network

Exploits in database: 5

• June 17, 2021
  • Cisco IP Phone 11.7 - Denial of service (PoC) [Exploit-DB]
• April 25, 2021
  • CVE-2020-3161 () [Github]
• January 18, 2021
  • CVE-2020-3161 (Cisco IP Phone 11.7 - Denial of Service (PoC)) [Github]
• January 11, 2021
  • CVE-2020-3161-REMAKE (Um simples 'remake' da falha 'CVE-2020-3161'.) [Github]
• January 3, 2021
  • CVE-2020-3161 () [Github]

Impact: Code execution

Vulnerable software:
Cisco IP Phone 7811
Hardware solutions / Office equipment, IP-phones, print servers
Cisco IP Phone 7821
Hardware solutions / Office equipment, IP-phones, print servers
Cisco IP Phone 7841
Hardware solutions / Office equipment, IP-phones, print servers
Cisco IP Phone 7861
Hardware solutions / Office equipment, IP-phones, print servers
Cisco IP Phone 8811
Hardware solutions / Office equipment, IP-phones, print servers
Cisco IP Phone 8841
Hardware solutions / Office equipment, IP-phones, print servers
Cisco Wireless IP Phone 8845
Hardware solutions / Office equipment, IP-phones, print servers
Cisco Wireless IP Phone 8851
Hardware solutions / Office equipment, IP-phones, print servers
Cisco Unified IP Conference Phone 8831
Hardware solutions / Office equipment, IP-phones, print servers
Cisco Wireless IP Phone 8821
Hardware solutions / Office equipment, IP-phones, print servers
Cisco Wireless IP Phone 8821-EX
Hardware solutions / Office equipment, IP-phones, print servers
Cisco IP Phone 8861
Hardware solutions / Routers & switches, VoIP, GSM, etc
Cisco IP Phone 8865
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor: Cisco Systems, Inc