The most serious vulnerabilities in Cisco s 8800 Series IP Phones could allow unauthenticated, remote attackers to conduct a cross-site request forgery attack or write arbitrary files to the. targeted device’s. filesystem. The vulnerabilities were found in the IP Phone 8800 series, which are business desk phones that have HD video included and its IP Phone 7800 series which are meant for desktops and conference rooms in businesses. Cisco issued patches for five high-severity flaws found in its popular business-focused IP phones on Wednesday.
Source: https://threatpost.com/cisco-patches-high-severity-flaws-in-ip-phones/143016/