Rewterz Threat Alert – APT32 SeaLotus (OceanLotus Group)- Active IOCs
December 9, 2022Rewterz Threat Alert – GuLoader Malspam Campaign – Active IOCs
December 9, 2022Rewterz Threat Alert – APT32 SeaLotus (OceanLotus Group)- Active IOCs
December 9, 2022Rewterz Threat Alert – GuLoader Malspam Campaign – Active IOCs
December 9, 2022Severity
High
Analysis Summary
CVE-2022-20968
Cisco IP Phone 7800 and 8800 Series firmware are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. By sending a specially crafted Cisco Discovery Protocol packets, a remote attacker could overflow a buffer and execute arbitrary code or cause a denial of service condition on the system.
Impact
Buffer Overflow
Indicators Of Compromise
CVE
- CVE-2022-20968
Affected Vendors
Cisco
Affected Products
- Cisco IP Phone 7800 Series
- Cisco IP Phone 8800 Series
Remediation
Refer to Cisco Security Advisory for patch, upgrade or suggested workaround information.