A high-risk stack overflow vulnerability (CVE-2022-20968) may allow attackers to DoS or possibly even execute code remotely on Cisco 7800 and 8800 Series IP phones, the company has confirmed.
Cisco‘s PSIRT is also aware that proof-of-concept exploit code is available for the vulnerability and that the flaw has been publicly discussed, but they are not aware of active attacks exploiting it.
About CVE-2022-20968
Cisco IP Phone 7800 and 8800 Series are enterprise-grade devices for video and voice communication. Their many security features allow users to harden them against a variety of attacks.