7.1
CVE-2014-0662
- EPSS 1.51%
- Veröffentlicht 22.01.2014 21:55:03
- Zuletzt bearbeitet 11.04.2025 00:51:21
- Quelle psirt@cisco.com
- Teams Watchlist Login
- Unerledigt Login
The SIP module in Cisco TelePresence Video Communication Server (VCS) before 8.1 allows remote attackers to cause a denial of service (process failure) via a crafted SDP message, aka Bug ID CSCue97632.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Telepresence Video Communication Server Software Version <= x7.2.2
Cisco ≫ Telepresence Video Communication Server Software Versionx6.0
Cisco ≫ Telepresence Video Communication Server Software Versionx6.1
Cisco ≫ Telepresence Video Communication Server Software Versionx7.1
Cisco ≫ Telepresence Video Communication Server Software Versionx7.2
Cisco ≫ Telepresence Video Communication Server Software Versionx7.2.1
Cisco ≫ Telepresence Video Communication Servers Software Versionx7.0
Cisco ≫ Telepresence Video Communication Servers Software Versionx7.0.1
Cisco ≫ Telepresence Video Communication Servers Software Versionx7.0.2
Cisco ≫ Telepresence Video Communication Servers Software Versionx7.0.3
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.51% | 0.805 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 8.6 | 6.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.