Описание
The Certificate Authority Proxy Function (CAPF) service in Cisco Unified Communications Manager 5.x before 5.1(3e) and 6.x before 6.1(3) allows remote attackers to cause a denial of service (voice service outage) by sending malformed input over a TCP session in which the "client terminates prematurely."
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:cisco:unified_communications_manager:5.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.0_1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.0_2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.0_3:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.0_3a:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.0_4:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.0_4a:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.0_4a_su1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:\(1\):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:\(2\):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:\(2a\):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:\(2b\):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:\(3a\):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:5.1\(1\):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1:5.1_\(2a\):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1\(1\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1\(2\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1\(3c\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1.2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1_\(2a\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1_1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1_2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1_2a:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1_2b:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:5.1_3a:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.0:\(1\):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.0:\(1a\):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.0_1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.0_1a:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.1:\(1a\):*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.1\(2\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.1.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_communications_manager:6.1_1a:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00529
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
почти 4 года назад
The Certificate Authority Proxy Function (CAPF) service in Cisco Unified Communications Manager 5.x before 5.1(3e) and 6.x before 6.1(3) allows remote attackers to cause a denial of service (voice service outage) by sending malformed input over a TCP session in which the "client terminates prematurely."
EPSS
Процентиль: 67%
0.00529
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-20