CVE-2022-20817

Name of the Vulnerable Software and Affected Versions Cisco Unified IP Phone (affected versions not specified)

Description The issue is related to errors in the code of the random number generator in the software of Cisco Unified IP Phones. This could allow a remote attacker to impersonate another user's phone. The vulnerability is due to improper key generation during the manufacturing process, which could result in duplicated keys installed on multiple devices. An attacker could exploit this by performing a machine-in-the-middle attack on the secure communication between the phone and the Cisco Unified Communications Manager (CUCM). A successful exploit could allow the attacker to impersonate another user's phone.

Recommendations As a temporary workaround, consider implementing additional security measures to the Cisco Unified Communications Manager (CUCM) to minimize the risk of exploitation, such as enhancing the security of the communication between the phone and the CUCM. At the moment, there is no information about a newer version that contains a fix for this vulnerability.