7.1
CVE-2014-0662
- EPSS 1.51%
- Published 22.01.2014 21:55:03
- Last modified 11.04.2025 00:51:21
- Source psirt@cisco.com
- Teams watchlist Login
- Open Login
The SIP module in Cisco TelePresence Video Communication Server (VCS) before 8.1 allows remote attackers to cause a denial of service (process failure) via a crafted SDP message, aka Bug ID CSCue97632.
Data is provided by the National Vulnerability Database (NVD)
Cisco ≫ Telepresence Video Communication Server Software Version <= x7.2.2
Cisco ≫ Telepresence Video Communication Server Software Versionx6.0
Cisco ≫ Telepresence Video Communication Server Software Versionx6.1
Cisco ≫ Telepresence Video Communication Server Software Versionx7.1
Cisco ≫ Telepresence Video Communication Server Software Versionx7.2
Cisco ≫ Telepresence Video Communication Server Software Versionx7.2.1
Cisco ≫ Telepresence Video Communication Servers Software Versionx7.0
Cisco ≫ Telepresence Video Communication Servers Software Versionx7.0.1
Cisco ≫ Telepresence Video Communication Servers Software Versionx7.0.2
Cisco ≫ Telepresence Video Communication Servers Software Versionx7.0.3
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.51% | 0.805 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 8.6 | 6.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.