CVE-2021-1379

MEDIUM EPSS 23.2%
Published Nov 18, 20241y ago · Modified Jun 17, 20262w ago
6.5 CVSS 3.1
Medium
Find Similar
Published Nov 18, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

Multiple vulnerabilities in the Cisco Discovery Protocol and Link Layer Discovery Protocol (LLDP) implementations for Cisco IP Phone Series 68xx/78xx/88xx could allow an unauthenticated, adjacent attacker to execute code remotely or cause a reload of an affected IP phone. These vulnerabilities are due to missing checks when the IP phone processes a Cisco Discovery Protocol or LLDP packet. An attacker could exploit these vulnerabilities by sending a malicious Cisco Discovery Protocol or LLDP packet to the targeted IP phone. A successful exploit could allow the attacker to execute code on the affected IP phone or cause it to reload unexpectedly, resulting in a denial of service (DoS) condition.Note: Cisco Discovery Protocol is a Layer 2 protocol. To exploit these vulnerabilities, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.

CVSS Details

Base Score
6.5
Exploitability
2.8
Impact
3.6
Vector string
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector Adjacent
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
23.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-120

Affected Products 73

VendorProductVersionRange
ciscoip_conference_phone_7832_firmware* <12.8\(1\)
ciscoip_conference_phone_7832_firmware12.8\(1\)any
ciscoip_conference_phone_7832_with_multiplatform_firmware* <11.3\(2\)
ciscoip_conference_phone_7832*any
ciscoip_conference_phone_8832_firmware* <12.8\(1\)
ciscoip_conference_phone_8832_firmware12.8\(1\)any
ciscoip_conference_phone_8832_with_multiplatform_firmware* <11.3\(2\)
ciscoip_conference_phone_8832*any
ciscoip_phone_6821_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_6821*any
ciscoip_phone_6841_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_6841*any
ciscoip_phone_6851_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_6851*any
ciscoip_phone_6861_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_6861*any
ciscoip_phone_6871_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_6871*any
ciscoip_phone_7811_firmware* <12.8\(1\)
ciscoip_phone_7811_firmware12.8\(1\)any
ciscoip_phone_7811_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_7811*any
ciscoip_phone_7821_firmware* <12.8\(1\)
ciscoip_phone_7821_firmware12.8\(1\)any
ciscoip_phone_7821_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_7821*any
ciscoip_phone_7841_firmware* <12.8\(1\)
ciscoip_phone_7841_firmware12.8\(1\)any
ciscoip_phone_7841_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_7841*any
ciscoip_phone_7861_firmware* <12.8\(1\)
ciscoip_phone_7861_firmware12.8\(1\)any
ciscoip_phone_7861_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_7861*any
ciscoip_phone_8811_firmware* <12.8\(1\)
ciscoip_phone_8811_firmware12.8\(1\)any
ciscoip_phone_8811_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_8811*any
ciscoip_phone_8841_firmware* <12.8\(1\)
ciscoip_phone_8841_firmware12.8\(1\)any
ciscoip_phone_8841_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_8841*any
ciscoip_phone_8851_firmware* <12.8\(1\)
ciscoip_phone_8851_firmware12.8\(1\)any
ciscoip_phone_8851_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_8851*any
ciscoip_phone_8861_firmware* <12.8\(1\)
ciscoip_phone_8861_firmware12.8\(1\)any
ciscoip_phone_8861_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_8861*any
ciscoip_phone_8845_firmware* <12.8\(1\)
ciscoip_phone_8845_firmware12.8\(1\)any
ciscoip_phone_8845_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_8845*any
ciscoip_phone_8865_firmware* <12.8\(1\)
ciscoip_phone_8865_firmware12.8\(1\)any
ciscoip_phone_8865_with_multiplatform_firmware* <11.3\(2\)
ciscoip_phone_8865*any
ciscounified_ip_conference_phone_8831_firmware* <10.3\(1\)
ciscounified_ip_conference_phone_8831_firmware10.3\(1\)any
ciscounified_ip_conference_phone_8831_firmware10.3\(1\)any
ciscounified_ip_conference_phone_8831_firmware10.3\(1\)any
ciscounified_ip_conference_phone_8831_firmware10.3\(1\)any
ciscounified_ip_conference_phone_8831_firmware10.3\(1\)any
ciscounified_ip_conference_phone_8831_firmware10.3\(1\)any
ciscounified_ip_conference_phone_8831_for_third-party_call_control_firmware*any
ciscounified_ip_conference_phone_8831*any
ciscowireless_ip_phone_8821_firmware* <11.0\(6.6\)
ciscowireless_ip_phone_8821*any
ciscowireless_ip_phone_8821-ex_firmware* <11.0\(6.6\)
ciscowireless_ip_phone_8821-ex*any
ciscospa525g_firmware*any
ciscospa525g*any

References 2

  • sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipphone-rce-dos-U2PsSkz3
    Vendor Advisory
  • sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-distupd-N87eB6Z3
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.