Описание
Memory leak in inetinfo.exe in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1, when Multi Level Admin (MLA) is enabled, allows remote attackers to cause a denial of service (memory consumption) via a large number of Admin Service Tool (AST) logins that fail.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:h:cisco:call_manager:3.2:*:*:*:*:*:*:*
cpe:2.3:h:cisco:call_manager:3.3:*:*:*:*:*:*:*
cpe:2.3:h:cisco:call_manager:4.0:*:*:*:*:*:*:*
cpe:2.3:h:cisco:call_manager:4.1:*:*:*:*:*:*:*
EPSS
Процентиль: 70%
0.00655
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Memory leak in inetinfo.exe in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1, when Multi Level Admin (MLA) is enabled, allows remote attackers to cause a denial of service (memory consumption) via a large number of Admin Service Tool (AST) logins that fail.
EPSS
Процентиль: 70%
0.00655
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other