Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2015-6403

The TFTP implementation on Cisco Small Business SPA30x, SPA50x, SPA51x phones 7.5.7 improperly validates firmware-image file integrity, which allows local users to load a Trojan horse image by leveraging shell access, aka Bug ID CSCut67400.

Security Impact Summary

CVE-2015-6403 is a security vulnerability that . Impacting 14 products from cisco, from cisco, from cisco and 11 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

First disclosed in 2015, this vulnerability was reported during a period defined by widespread IoT adoption challenges, mobile security concerns, and the emergence of advanced persistent threat (APT) techniques. Contemporary mitigation strategies focused on secure development practices and third-party component vetting.

Published

2015-12-15T05:59:04.853

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 7.2 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Primary
CWE-20

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	spa500_firmware	7.5.7	Yes
Hardware	cisco	spa_500ds	-	No
Hardware	cisco	spa_500s	-	No
Hardware	cisco	spa_501g	-	No
Hardware	cisco	spa_502g	-	No
Hardware	cisco	spa_504g	-	No
Hardware	cisco	spa_508g	-	No
Hardware	cisco	spa_509g	-	No
Hardware	cisco	spa_512g	-	No
Hardware	cisco	spa_514g	-	No
Hardware	cisco	spa_525g2	-	No
Operating System	cisco	spa300_firmware	7.5.7	Yes
Hardware	cisco	spa_301	-	No
Hardware	cisco	spa_303	-	No

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-ipp Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/78739 ([email protected])
http://www.securitytracker.com/id/1034376 ([email protected])
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-ipp Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/78739 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1034376 (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For cisco's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.