Cisco Spa 301 1 Line Ip Phone — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Spa 301 1 Line Ip Phone, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2014-3312 — CVSS 6.9 (medium): The debug console interface on Cisco Small Business SPA300 and SPA500 phones does not properly perform authentication, which allows local…
CVE-2015-0670 — CVSS 6.4 (medium): The default configuration of Cisco Small Business IP phones SPA 300 7.5.5 and SPA 500 7.5.5 does not properly support authentication, which…
CVE-2014-3313 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the web user interface on Cisco Small Business SPA300 and SPA500 phones allows remote attackers…