Vulnerabilities (CVE)

Filtered by vendor Linksys Subscribe
Filtered by product Spa941
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-5411 1 Linksys 1 Spa941 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the Linksys SPA941 VoIP Phone with firmware 5.1.8 allows remote attackers to inject arbitrary web script or HTML via the From header in a SIP message.
CVE-2007-2270 1 Linksys 1 Spa941 2024-11-21 7.8 HIGH N/A
The Linksys SPA941 VoIP Phone allows remote attackers to cause a denial of service (device reboot) via a 0377 (0xff) character in the From header, and possibly certain other locations, in a SIP INVITE request.