CVE-2020-3574

moderate-risk

Published 2020-11-06

A vulnerability in the TCP packet processing functionality of Cisco IP Phones could allow an unauthenticated, remote attacker to cause the phone to stop responding to incoming calls, drop connected calls, or unexpectedly reload. The vulnerability is due to insufficient TCP ingress packet rate limiting. An attacker could exploit this vulnerability by sending a high and sustained rate of crafted TCP traffic to the targeted device. A successful exploit could allow the attacker to impact operations of the phone or cause the phone to reload, leading to a denial of service (DoS) condition.

Do I need to act?

3.2% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (8)

Ip Dect 210 Firmware

Ip Dect 6825 Firmware

Ip Phone 8811 Firmware

Ip Phone 8841 Firmware

Ip Phone 8851 Firmware

Ip Phone 8861 Firmware

Unified Ip Conference Phone 8831 Firmware

Webex Room Phone Firmware

Affected Vendors

Cisco

References (2)

Patch https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-v...

/ 100

moderate-risk

Severity 26/34 · High

Exploitability 6/34 · Minimal

Exposure 14/34 · Moderate