CVE DATABASE / CVE-2005-2181
CVE-2005-2181
CVSS 7.5 · HIGH
Summary
Cisco 7940/7960 Voice over IP (VoIP) phones do not properly check the Call-ID, branch, and tag values in a NOTIFY message to verify a subscription, which allows remote attackers to spoof messages such as the "Messages waiting" message.
CVSS 3.1 breakdown
| Base score | 7.5 (HIGH) |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
| Attack vector | NETWORK |
| Attack complexity | LOW |
| Privileges required | NONE |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | NONE |
| Integrity | HIGH |
| Availability | NONE |
Weakness type (CWE)
Affected products
Cisco ip phone 7940 firmwareCisco ip phone 7940Cisco ip phone 7960 firmwareCisco ip phone 7960
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://marc.info/?l=bugtraq&m=112067698624686&w=2
- http://pentest.tele-consulting.com/advisories/05_07_06_voip-phones.txt
- http://www.securitytracker.com/alerts/2005/Jul/1014406.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21260
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.