Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The HTTP daemon in the Cisco Unified IP Phone, when the Extension Mobility feature is enabled, allows remote authenticated users of other phones associated with the same CUCM server to eavesdrop on the physical environment via a CiscoIPPhoneExecute message containing a URL attribute of an ExecuteItem element that specifies a Real-Time Transport Protocol (RTP) audio stream.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Unified IP Phone远程窃听通话漏洞
Vulnerability Description
Cisco Unified IP Phone是美国思科(Cisco)公司的一套统一IP电话解决方案。 Cisco Unified IP Phone的实现上存在漏洞,远程攻击者可能利用此漏洞窃听通话。 拥有有效Extension Mobility认证凭据的攻击者可以导致配置为使用Extension Mobility功能的Cisco Unified IP Phone传输或接收实时传输协议(RTP)音频流,这可能导致远程窃听攻击。所有支持Extension Mobility 功能的Cisco IP Phone设
CVSS Information
N/A
Vulnerability Type
N/A