CVE-2019-1683
CVSS V2 Medium 5.8
CVSS V3 High 7.4
Description
A vulnerability in the certificate handling component of the Cisco SPA112, SPA525, and SPA5X5 Series IP Phones could allow an unauthenticated, remote attacker to listen to or control some aspects of a Transport Level Security (TLS)-encrypted Session Initiation Protocol (SIP) conversation. The vulnerability is due to the improper validation of server certificates. An attacker could exploit this vulnerability by crafting a malicious server certificate to present to the client. An exploit could allow an attacker to eavesdrop on TLS-encrypted traffic and potentially route or redirect calls initiated by an affected device. Affected software include version 7.6.2 of the Cisco Small Business SPA525 Series IP Phones and Cisco Small Business SPA5X5 Series IP Phones and version 1.4.2 of the Cisco Small Business SPA500 Series IP Phones and Cisco Small Business SPA112 Series IP Phones.
Overview
- CVE ID
- CVE-2019-1683
- Assigner
- ykramarz@cisco.com
- Vulnerability Status
- Analyzed
- Published Version
- 2019-02-25T17:29:00
- Last Modified Date
- 2023-03-23T17:34:03
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| AND | ||||
| cpe:2.3:o:cisco:spa112_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa112:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa525_firmware:7.6.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa525:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa5x5_firmware:7.6.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa5x5:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa500_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:o:cisco:spa500:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa500s_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa500s:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa500ds_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa500ds:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa501g_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa501g:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa502g_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa502g:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa504g_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa504g:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa508g_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa508g:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa509g_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa509g:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa512g_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa512g:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa514g_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa514g:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:cisco:spa525g_firmware:1.4.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:h:cisco:spa525g:-:*:*:*:*:*:*:* | 0 | OR |
CVSS Version 2
- Version
- 2.0
- Vector String
- AV:N/AC:M/Au:N/C:P/I:P/A:N
- Access Vector
- NETWORK
- Access Compatibility
- MEDIUM
- Authentication
- NONE
- Confidentiality Impact
- PARTIAL
- Integrity Impact
- PARTIAL
- Availability Impact
- NONE
- Base Score
- 5.8
- Severity
- MEDIUM
- Exploitability Score
- 8.6
- Impact Score
- 4.9
CVSS Version 3
- Version
- 3.0
- Vector String
- CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
- Attack Vector
- NETWORK
- Attack Compatibility
- HIGH
- Privileges Required
- NONE
- User Interaction
- NONE
- Scope
- UNCHANGED
- Confidentiality Impact
- HIGH
- Availability Impact
- NONE
- Base Score
- 7.4
- Base Severity
- HIGH
- Exploitability Score
- 2.2
- Impact Score
- 5.2
References
| Reference URL | Reference Tags |
|---|---|
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-ipphone-certs | Vendor Advisory |
| http://www.securityfocus.com/bid/107111 | Third Party Advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2019-1683 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1683 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2022-05-10 17:03:04 | Added to TrackCVE | |||
| 2022-12-03 17:39:51 | psirt@cisco.com | ykramarz@cisco.com | CVE Assigner | updated |
| 2022-12-03 17:39:51 | 2019-02-25T17:29Z | 2019-02-25T17:29:00 | CVE Published Date | updated |
| 2022-12-03 17:39:51 | 2019-10-09T23:47:42 | CVE Modified Date | updated | |
| 2022-12-03 17:39:51 | Modified | Vulnerability Status | updated | |
| 2023-01-25 20:08:08 | Modified | Undergoing Analysis | Vulnerability Status | updated |
| 2023-03-27 14:09:28 | 2023-03-23T17:34:03 | CVE Modified Date | updated | |
| 2023-03-27 14:09:28 | Undergoing Analysis | Analyzed | Vulnerability Status | updated |