7.8
CVE-2014-2160
- EPSS 0.22%
- Veröffentlicht 02.05.2014 10:55:08
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle psirt@cisco.com
- Teams Watchlist Login
- Unerledigt Login
The H.225 subsystem in Cisco TelePresence System MXP Series Software before F9.3.1 allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCty45745.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Telepresence System Software Version <= f9.3
Cisco ≫ Telepresence System Software Versionf9.0.1
Cisco ≫ Telepresence System Software Versionf9.0.2
Cisco ≫ Telepresence System Software Versionf9.1.0
Cisco ≫ Telepresence System Software Versionf9.1.1
Cisco ≫ Telepresence System Software Versionf9.1.2
Cisco ≫ Telepresence System Software Versionfnc9.1.0
Cisco ≫ Telepresence System Software Versionfnc9.1.1
Cisco ≫ Telepresence System Software Versionfnc9.1.2
Cisco ≫ Telepresence System Software Versionfnc9.3
Cisco ≫ Tandberg 2000 Mxp Version-
Cisco ≫ Tandberg 550 Mxp Version-
Cisco ≫ Tandberg 770 Mxp Version-
Cisco ≫ Tandberg 880 Mxp Version-
Cisco ≫ Tandberg 990 Mxp Version-
Cisco ≫ Telepresence System 1000 Mxp Version-
Cisco ≫ Telepresence System 1700 Mxp Version-
Cisco ≫ Telepresence System Codec 3000 Mxp Version-
Cisco ≫ Telepresence System Codec 6000 Mxp Version-
Cisco ≫ Telepresence System Edge 75 Mxp Version-
Cisco ≫ Telepresence System Edge 85 Mxp Version-
Cisco ≫ Telepresence System Edge 95 Mxp Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.22% | 0.414 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.