A critical security flaw has been identified in various Cisco phone models, including the Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875. This vulnerability, known as CVE-2024-20445, poses a serious risk as it could be exploited by remote attackers without authentication, allowing them to access sensitive information.
The vulnerability falls under the category of CWE-200, which deals with the exposure of sensitive information to unauthorized individuals. In this case, the flaw arises from the improper storage of sensitive data within the web user interface of Session Initiation Protocol (SIP)-based phone software.
Specifically, the vulnerability occurs when the Web Access feature is enabled on the affected devices, leading to the mishandling of sensitive information within the web UI. Attackers can take advantage of this flaw by simply browsing the IP address of the vulnerable device, gaining access to call records, both incoming and outgoing, stored on the device.
While the default setting of these devices has the Web Access feature disabled, the risk escalates when it is turned on. Cisco has taken immediate action upon acknowledging the issue by releasing software updates to rectify the vulnerability. Unfortunately, no workarounds are available, and the only solution is to apply the fixed software versions provided by Cisco.
The impacted products include the Cisco Desk Phone 9800 Series, IP Phone 7800 Series, IP Phone 8800 Series (except the Wireless IP Phone 8821), and Video Phone 8875. Users are advised to check if the Web Access feature is enabled on their devices and, if so, disable it or apply the necessary software updates to mitigate the risk of exploitation.
Cisco has issued patches to address the vulnerability, and users are strongly encouraged to keep their devices up to date with the latest secure software versions. Regularly monitoring the Cisco Security Advisories page is recommended to stay informed about any new updates or security alerts.
When upgrading to the fixed software versions, users should ensure that their devices have the required resources and support to operate seamlessly. By taking proactive measures and staying vigilant, users can protect their Cisco phones from potential security breaches and unauthorized access to sensitive information.
In conclusion, cybersecurity threats are constantly evolving, and it is essential for organizations and individuals to stay informed about vulnerabilities like CVE-2024-20445 and take prompt action to safeguard their systems and data. By following best practices and implementing security measures, users can enhance the protection of their devices against malicious actors and cyber threats.
Croatian 
English 
Albanian 
Serbian 