7.8
CVE-2008-1745
- EPSS 1.92%
- Veröffentlicht 16.05.2008 12:54:00
- Zuletzt bearbeitet 16.06.2026 22:52:24
- Quelle psirt@cisco.com
- CVE-Watchlists
- Unerledigt
Cisco Unified Communications Manager (CUCM) 5.x before 5.1(2) and 6.x before 6.1(1) allows remote attackers to cause a denial of service (service interruption) via a SIP JOIN message with a malformed header, aka Bug ID CSCsi48115.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Unified Communications Manager Version4.1
Cisco ≫ Unified Communications Manager Version4.3
Cisco ≫ Unified Communications Manager Version6.0
Cisco ≫ Unified Communications Manager Version6.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.92% | 0.772 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
http://secunia.com/advisories/30238
http://securitytracker.com/id?1020022
http://www.cisco.com/en/US/products/products_security_advisory09186a0080995688.shtml
http://www.securityfocus.com/bid/29221
http://www.vupen.com/english/advisories/2008/1533
https://exchange.xforce.ibmcloud.com/vulnerabilities/42417