CVE-2021-33478
MEDIUMCisco IP Phone 8800 Series Firmware < 14.0(1) - Unauthenticated Arbitrary Code Execution in TrustZone TEE
Title source: llmDescription
The TrustZone implementation in certain Broadcom MediaxChange firmware could allow an unauthenticated, physically proximate attacker to achieve arbitrary code execution in the TrustZone Trusted Execution Environment (TEE) of an affected device. This, for example, affects certain Cisco IP Phone and Wireless IP Phone products before 2021-07-07. Exploitation is possible only when the attacker can disassemble the device in order to control the voltage/current for chip pins.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-brcm-mxc-jul2021-26LqUZUh
Scores
CVSS v3
6.8
EPSS
0.0013
EPSS Percentile
32.4%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-119
Status
published
Products (15)
cisco/ip_phone_8800_firmware
< 14.0\(1\)
cisco/ip_phone_8800_series_with_multiplatform_firmware
< 11.3\(4\)
cisco/ip_phone_8811_firmware
< 14.0\(1\)
cisco/ip_phone_8811_with_multiplatform_firmware
< 11.3\(4\)
cisco/ip_phone_8841_firmware
< 14.0\(1\)
cisco/ip_phone_8841_with_multiplatform_firmware
< 11.3\(4\)
cisco/ip_phone_8845_firmware
< 14.0\(1\)
cisco/ip_phone_8845_with_multiplatform_firmware
< 11.3\(4\)
cisco/ip_phone_8851_firmware
< 14.0\(1\)
cisco/ip_phone_8851_with_multiplatform_firmware
< 11.3\(4\)
... and 5 more
Published
Jul 22, 2021
Tracked Since
Feb 18, 2026