Strix
26.1K

CVE-2021-1379

MEDIUMCVSS 6.5/10EPSS 0.32%

Last modified

CVE-2021-1379 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. Multiple vulnerabilities in the Cisco Discovery Protocol and Link Layer Discovery Protocol (LLDP) implementations for Cisco IP Phone Series 68xx/78xx/88xx could allow an unauthenticated, adjacent attacker to execute code remotely or cause a reload of an affected IP phone. These vulnerabilities are due to missing checks when the IP phone processes a Cisco Discovery Protocol or LLDP packet. An attacker could exploit these vulnerabilities by sending a malicious Cisco Discovery Protocol or LLDP packet to the targeted IP phone. EPSS estimates a 0.32% chance of exploitation in the next 30 days.

Description

Multiple vulnerabilities in the Cisco Discovery Protocol and Link Layer Discovery Protocol (LLDP) implementations for Cisco IP Phone Series 68xx/78xx/88xx could allow an unauthenticated, adjacent attacker to execute code remotely or cause a reload of an affected IP phone. These vulnerabilities are due to missing checks when the IP phone processes a Cisco Discovery Protocol or LLDP packet. An attacker could exploit these vulnerabilities by sending a malicious Cisco Discovery Protocol or LLDP packet to the targeted IP phone. A successful exploit could allow the attacker to execute code on the affected IP phone or cause it to reload unexpectedly, resulting in a denial of service (DoS) condition.Note: Cisco Discovery Protocol is a Layer 2 protocol. To exploit these vulnerabilities, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.

Metrics

CVSS 3.1
6.5/10

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Probability
0.32%

23.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoIp Conference Phone 7832 Firmware< 12.8\(1\)
CiscoIp Conference Phone 7832 Firmware12.8\(1\)
CiscoIp Conference Phone 7832 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Conference Phone 8832 Firmware< 12.8\(1\)
CiscoIp Conference Phone 8832 Firmware12.8\(1\)
CiscoIp Conference Phone 8832 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 6821 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 6841 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 6851 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 6861 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 6871 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 7811 Firmware< 12.8\(1\)
CiscoIp Phone 7811 Firmware12.8\(1\)
CiscoIp Phone 7811 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 7821 Firmware< 12.8\(1\)
CiscoIp Phone 7821 Firmware12.8\(1\)
CiscoIp Phone 7821 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 7841 Firmware< 12.8\(1\)
CiscoIp Phone 7841 Firmware12.8\(1\)
CiscoIp Phone 7841 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 7861 Firmware< 12.8\(1\)
CiscoIp Phone 7861 Firmware12.8\(1\)
CiscoIp Phone 7861 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 8811 Firmware< 12.8\(1\)
CiscoIp Phone 8811 Firmware12.8\(1\)
CiscoIp Phone 8811 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 8841 Firmware< 12.8\(1\)
CiscoIp Phone 8841 Firmware12.8\(1\)
CiscoIp Phone 8841 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 8851 Firmware< 12.8\(1\)
CiscoIp Phone 8851 Firmware12.8\(1\)
CiscoIp Phone 8851 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 8861 Firmware< 12.8\(1\)
CiscoIp Phone 8861 Firmware12.8\(1\)
CiscoIp Phone 8861 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 8845 Firmware< 12.8\(1\)
CiscoIp Phone 8845 Firmware12.8\(1\)
CiscoIp Phone 8845 With Multiplatform Firmware< 11.3\(2\)
CiscoIp Phone 8865 Firmware< 12.8\(1\)
CiscoIp Phone 8865 Firmware12.8\(1\)
CiscoIp Phone 8865 With Multiplatform Firmware< 11.3\(2\)
CiscoUnified Ip Conference Phone 8831 Firmware< 10.3\(1\)
CiscoUnified Ip Conference Phone 8831 Firmware10.3\(1\)
CiscoUnified Ip Conference Phone 8831 For Third-Party Call Control FirmwareAll versions
CiscoWireless Ip Phone 8821 Firmware< 11.0\(6.6\)
CiscoWireless Ip Phone 8821-Ex Firmware< 11.0\(6.6\)
CiscoSpa525g FirmwareAll versions

References

Timeline

Published
Last Modified
Status
Analyzed

Frequently Asked Questions

What is CVE-2021-1379?
Multiple vulnerabilities in the Cisco&nbsp;Discovery Protocol and Link Layer Discovery Protocol (LLDP) implementations for Cisco&nbsp;IP Phone Series 68xx/78xx/88xx could allow an unauthenticated, adjacent attacker to execute code remotely or cause a reload of an affected IP phone. These vulnerabilities are due to missing checks when the IP phone processes a Cisco&nbsp;Discovery Protocol or LLDP packet. An attacker could exploit these vulnerabilities by sending a malicious Cisco&nbsp;Discovery Protocol or LLDP packet to the targeted IP phone. A successful exploit could allow the attacker to execute code on the affected IP phone or cause it to reload unexpectedly, resulting in a denial of service (DoS) condition.Note: Cisco&nbsp;Discovery Protocol is a Layer 2 protocol. To exploit these vulnerabilities, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).Cisco&nbsp;has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.
How severe is CVE-2021-1379?
CVE-2021-1379 has a CVSS score of 6.5/10 (MEDIUM severity). The EPSS model estimates a 0.32% probability of exploitation in the next 30 days.
How do I fix CVE-2021-1379?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-1379?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST