Critical Flaw in Cisco IP Phone Series Exposes Users to Command Injection Attack

02 March 2023

The vulnerability, tracked as CVE-2023-20078, is rated 9.8 out of 10 on the CVSS scoring system and is described as a command injection bug in the web-based management interface arising due to insufficient validation of user-supplied input.

>>More

We use cookies to ensure you get the best experience on our website. Cookie policy