Critical RCE vulnerability in Cisco phone adapters, no update available
Critical RCE vulnerability in Cisco phone adapters, no update available
05 May 2023
“This vulnerability is due to a missing authentication process within the firmware upgrade function. An attacker could exploit this vulnerability by upgrading an affected device to a crafted version of firmware,” Cisco’s security advisory explains.