CVE-2022-20660

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 14-01-2022 06:15

Last modified: - 22-01-2022 03:36

Total changes: - 3

Description

A vulnerability in the information storage architecture of several Cisco IP Phone models could allow an unauthenticated, physical attacker to obtain confidential information from an affected device. This vulnerability is due to unencrypted storage of confidential information on an affected device. An attacker could exploit this vulnerability by physically extracting and accessing one of the flash memory chips. A successful exploit could allow the attacker to obtain confidential information from the device, which could be used for subsequent attacks.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Low

Attack complexity

Physical

Attack vector

None

Availability

High

Confidentiality

None

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

4.6

Base score

0.9

3.6

Exploitability score

Impact score

Verification logic

AND

vendor=cisco AND product=ip_conference_phone_7832_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_conference_phone_7832 AND version=-

AND

vendor=cisco AND product=ip_conference_phone_8832_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_conference_phone_8832 AND version=-

AND

vendor=cisco AND product=ip_phone_7811_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_phone_7811 AND version=-

AND

vendor=cisco AND product=ip_phone_7821_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_phone_7821 AND version=-

AND

vendor=cisco AND product=ip_phone_7841_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_phone_7841 AND version=-

AND

vendor=cisco AND product=ip_phone_7861_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_phone_7861 AND version=-

AND

vendor=cisco AND product=ip_phone_8811_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_phone_8811 AND version=-

AND

vendor=cisco AND product=ip_phone_8841_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_phone_8841 AND version=-

AND

vendor=cisco AND product=ip_phone_8845_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_phone_8845 AND version=-

AND

vendor=cisco AND product=ip_phone_8851_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_phone_8851 AND version=-

AND

vendor=cisco AND product=ip_phone_8861_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_phone_8861 AND version=-

AND

vendor=cisco AND product=ip_phone_8865_firmware AND versionEndExcluding=14.1\(1\)

vendor=cisco AND product=ip_phone_8865 AND version=-

AND

vendor=cisco AND product=unified_ip_conference_phone_8831_firmware AND version=-

vendor=cisco AND product=unified_ip_conference_phone_8831 AND version=-

AND

vendor=cisco AND product=unified_ip_conference_phone_8831_for_third-party_call_control_firmware AND version=-

vendor=cisco AND product=unified_ip_conference_phone_8831_for_third-party_call_control AND version=-

AND

vendor=cisco AND product=unified_ip_phone_7945g_firmware AND version=-

vendor=cisco AND product=unified_ip_phone_7945g AND version=-

AND

vendor=cisco AND product=unified_ip_phone_7965g_firmware AND version=-

vendor=cisco AND product=unified_ip_phone_7965g AND version=-

AND

vendor=cisco AND product=unified_ip_phone_7975g_firmware AND version=-

vendor=cisco AND product=unified_ip_phone_7975g AND version=-

AND

vendor=cisco AND product=unified_sip_phone_3905_firmware AND versionEndExcluding=9.4\(1\)sr5

vendor=cisco AND product=unified_sip_phone_3905 AND version=-

AND

vendor=cisco AND product=wireless_ip_phone_8821_firmware AND versionEndExcluding=11.0\(6\)sr2

vendor=cisco AND product=wireless_ip_phone_8821 AND version=-

AND

vendor=cisco AND product=wireless_ip_phone_8821-ex_firmware AND versionEndExcluding=11.0\(6\)sr2

vendor=cisco AND product=wireless_ip_phone_8821-ex AND version=-

Reference

20220113 Cisco IP Phones Information Disclosure Vulnerability-Vendor Advisory
20220114 SEC Consult SA-20220113-0 :: Cleartext Storage of Phone Password in Cisco IP Phones-Mailing List, Third Party Advisory
http://packetstormsecurity.com/files/165567/Cisco-IP-Phone-Cleartext-Password-Storage.html

Keywords

CVE-2022-20660

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2022-20660

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures