VAR-202110-0201
Vulnerability from variot - Updated: 2024-08-14 14:03A vulnerability in the debug shell of Cisco IP Phone software could allow an authenticated, local attacker to read any file on the device file system. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by providing crafted input to a debug shell command. A successful exploit could allow the attacker to read any file on the device file system
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-202110-0201",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "ip phone 8831",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phone 8841",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phone 7841",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phones 8832",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phone 7832",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phone 8811",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip conference phone 7832",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phone 7861",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phone 8865",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "wireless ip phone 8821",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "11.0\\(6\\)sr2"
},
{
"model": "ip conference phone 8832",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phone 8851",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phone 8861",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phone 7811",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phone 7821",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
},
{
"model": "ip phone 8845",
"scope": "lt",
"trust": 1.0,
"vendor": "cisco",
"version": "14.1\\(1\\)"
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2021-34711"
}
]
},
"cve": "CVE-2021-34711",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.9,
"id": "CVE-2021-34711",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "LOW",
"trust": 1.1,
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.8,
"id": "CVE-2021-34711",
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"trust": 2.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2021-34711",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "ykramarz@cisco.com",
"id": "CVE-2021-34711",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-202110-303",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "VULMON",
"id": "CVE-2021-34711",
"trust": 0.1,
"value": "LOW"
}
]
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2021-34711"
},
{
"db": "CNNVD",
"id": "CNNVD-202110-303"
},
{
"db": "NVD",
"id": "CVE-2021-34711"
},
{
"db": "NVD",
"id": "CVE-2021-34711"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability in the debug shell of Cisco IP Phone software could allow an authenticated, local attacker to read any file on the device file system. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by providing crafted input to a debug shell command. A successful exploit could allow the attacker to read any file on the device file system",
"sources": [
{
"db": "NVD",
"id": "CVE-2021-34711"
},
{
"db": "VULMON",
"id": "CVE-2021-34711"
}
],
"trust": 0.99
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2021-34711",
"trust": 1.7
},
{
"db": "AUSCERT",
"id": "ESB-2021.3315",
"trust": 0.6
},
{
"db": "CS-HELP",
"id": "SB2021100709",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-202110-303",
"trust": 0.6
},
{
"db": "VULMON",
"id": "CVE-2021-34711",
"trust": 0.1
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2021-34711"
},
{
"db": "CNNVD",
"id": "CNNVD-202110-303"
},
{
"db": "NVD",
"id": "CVE-2021-34711"
}
]
},
"id": "VAR-202110-0201",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VARIoT devices database",
"id": null
}
],
"trust": 0.3638431
},
"last_update_date": "2024-08-14T14:03:03.715000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Cisco IP Phone Repair measures for path traversal vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=165859"
},
{
"title": "Cisco: Cisco IP Phone Software Arbitrary File Read Vulnerability",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-ipphone-arbfileread-NPdtE2Ow"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2021-34711"
},
{
"db": "CNNVD",
"id": "CNNVD-202110-303"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-22",
"trust": 1.0
},
{
"problemtype": "CWE-36",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2021-34711"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.4,
"url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-ipphone-arbfileread-npdte2ow"
},
{
"trust": 0.6,
"url": "https://nvd.nist.gov/vuln/detail/cve-2021-34711"
},
{
"trust": 0.6,
"url": "https://www.cybersecurity-help.cz/vdb/sb2021100709"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.3315"
},
{
"trust": 0.6,
"url": "https://vigilance.fr/vulnerability/cisco-ip-phone-file-reading-via-url-filtering-bypass-36606"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/22.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2021-34711"
},
{
"db": "CNNVD",
"id": "CNNVD-202110-303"
},
{
"db": "NVD",
"id": "CVE-2021-34711"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULMON",
"id": "CVE-2021-34711"
},
{
"db": "CNNVD",
"id": "CNNVD-202110-303"
},
{
"db": "NVD",
"id": "CVE-2021-34711"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2021-10-06T00:00:00",
"db": "VULMON",
"id": "CVE-2021-34711"
},
{
"date": "2021-10-06T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202110-303"
},
{
"date": "2021-10-06T20:15:09.587000",
"db": "NVD",
"id": "CVE-2021-34711"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2021-10-14T00:00:00",
"db": "VULMON",
"id": "CVE-2021-34711"
},
{
"date": "2021-10-15T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202110-303"
},
{
"date": "2023-11-07T03:36:09.800000",
"db": "NVD",
"id": "CVE-2021-34711"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202110-303"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco IP Phone Path traversal vulnerability",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202110-303"
}
],
"trust": 0.6
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "path traversal",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202110-303"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…