7.1

CVE-2017-6790

EPSS 1.8%
Published 17.08.2017 20:29:00
Last modified 20.04.2025 01:37:25
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the Session Initiation Protocol (SIP) on the Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the targeted appliance. The vulnerability is due to excessive SIP traffic sent to the device. An attacker could exploit this vulnerability by transmitting large volumes of SIP traffic to the VCS. An exploit could allow the attacker to cause a complete DoS condition on the targeted system. Cisco Bug IDs: CSCve32897.

Affected products Warnungen 0 Metrics 3 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Telepresence Video Communication Server Versionx8.7

Cisco ≫ Telepresence Video Communication Server Versionx8.7.1

Cisco ≫ Telepresence Video Communication Server Versionx8.7.2

Cisco ≫ Telepresence Video Communication Server Versionx8.7.3

Cisco ≫ Telepresence Video Communication Server Versionx8.8

Cisco ≫ Telepresence Video Communication Server Versionx8.9

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.8%	0.811

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.8	2.2	4	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
nvd@nist.gov	7.1	8.6	6.9	AV:N/AC:M/Au:N/C:N/I:N/A:C

http://www.securityfocus.com/bid/100369

Third Party Advisory

VDB Entry

http://www.securitytracker.com/id/1039185

Third Party Advisory

VDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-vcs

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2017-6790

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-6790

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-6790

EUVD