CVE-2019-1922

Name of the Vulnerable Software and Affected Versions Cisco IP Phone Software for Cisco IP Phone 7800 Series and 8800 Series (affected versions not specified)

Description The issue is related to insufficient validation of input Session Initiation Protocol (SIP) packets, which could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected phone. An attacker could exploit this by altering the SIP replies sent to the phone during the registration process, potentially causing the phone to reboot and not complete the registration process.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.