Critical RCE vulnerability in Cisco phone adapters, no update available (CVE-2023-20126)

05-May-23

The firmware upgrade functions missing authentication mechanism is the cause of this vulnerability. By updating a vulnerable device to specially designed firmware, an attacker might take advantage of this vulnerability, according to Ciscos security alert. Without the requirement for an upgrade, the adapters are frequently used to integrate analogue phones into VoIP networks.

The firmware upgrade functions missing authentication mechanism is the cause of this vulnerability. By updating a vulnerable device to specially designed firmware, an attacker might take advantage of this vulnerability, according to Ciscos security alert.

Read More…