A vulnerability in the web-based management interface of Session Initiation Protocol (SIP) Software for Cisco IP Phone 8800 Series could allow an unauthenticated, remote attacker to bypass authorization, access critical services, and cause a denial of service (DoS) condition.

https://www.cisco.com/c/en/us/support/docs/csa/cisco-sa-20190320-ipab.html?dtid=osscdc000283