7.5
CVE-2018-0332
- EPSS 1.41%
- Published 07.06.2018 21:29:00
- Last modified 21.11.2024 03:37:59
- Source psirt@cisco.com
- Teams watchlist Login
- Open Login
A vulnerability in the Session Initiation Protocol (SIP) ingress packet processing of Cisco Unified IP Phone software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to a lack of flow-control mechanisms in the software. An attacker could exploit this vulnerability by sending high volumes of SIP INVITE traffic to the targeted device. Successful exploitation could allow the attacker to cause a disruption of services on the targeted IP phone. Cisco Bug IDs: CSCve10064, CSCve14617, CSCve14638, CSCve14683, CSCve20812, CSCve20926, CSCve20945.
Data is provided by the National Vulnerability Database (NVD)
Cisco ≫ Unified Ip Phone Firmware Version9.9(9.99002.1)
Cisco ≫ Unified Ip Phone Firmware Version9.9(9.99002.1)
Cisco ≫ Unified Ip Phone 7906g Version-
Cisco ≫ Unified Ip Phone 7911g Version-
Cisco ≫ Unified Ip Phone 7912g Version-
Cisco ≫ Unified Ip Phone 7931g Version-
Cisco ≫ Unified Ip Phone 7940g Version-
Cisco ≫ Unified Ip Phone 7941g Version-
Cisco ≫ Unified Ip Phone 7942g Version-
Cisco ≫ Unified Ip Phone 7945g Version-
Cisco ≫ Unified Ip Phone 7960g Version-
Cisco ≫ Unified Ip Phone 7961g Version-
Cisco ≫ Unified Ip Phone 7962g Version-
Cisco ≫ Unified Ip Phone 7965g Version-
Cisco ≫ Unified Ip Phone 7975g Version-
Cisco ≫ Unified Ip Phone 7911g Version-
Cisco ≫ Unified Ip Phone 7912g Version-
Cisco ≫ Unified Ip Phone 7931g Version-
Cisco ≫ Unified Ip Phone 7940g Version-
Cisco ≫ Unified Ip Phone 7941g Version-
Cisco ≫ Unified Ip Phone 7942g Version-
Cisco ≫ Unified Ip Phone 7945g Version-
Cisco ≫ Unified Ip Phone 7960g Version-
Cisco ≫ Unified Ip Phone 7961g Version-
Cisco ≫ Unified Ip Phone 7962g Version-
Cisco ≫ Unified Ip Phone 7965g Version-
Cisco ≫ Unified Ip Phone 7975g Version-
Cisco ≫ Ip Phone Firmware Version9.4(2)sr3.1
Cisco ≫ Ip Phone 7811 Version-
Cisco ≫ Ip Phone 7821 Version-
Cisco ≫ Ip Phone 7841 Version-
Cisco ≫ Ip Phone 7861 Version-
Cisco ≫ Ip Phone 7821 Version-
Cisco ≫ Ip Phone 7841 Version-
Cisco ≫ Ip Phone 7861 Version-
Cisco ≫ Ip Phone Firmware Version9.4(2)sr3.1
Cisco ≫ Ip Phone 8811 Version-
Cisco ≫ Ip Phone 8841 Version-
Cisco ≫ Ip Phone 8845 Version-
Cisco ≫ Ip Phone 8851 Version-
Cisco ≫ Ip Phone 8861 Version-
Cisco ≫ Ip Phone 8865 Version-
Cisco ≫ Ip Phone 8841 Version-
Cisco ≫ Ip Phone 8845 Version-
Cisco ≫ Ip Phone 8851 Version-
Cisco ≫ Ip Phone 8861 Version-
Cisco ≫ Ip Phone 8865 Version-
Cisco ≫ Ip Phone Firmware Version9.4(2)sr4
Cisco ≫ Ip Phone 8811 Version-
Cisco ≫ Ip Phone 8841 Version-
Cisco ≫ Ip Phone 8845 Version-
Cisco ≫ Ip Phone 8851 Version-
Cisco ≫ Ip Phone 8861 Version-
Cisco ≫ Ip Phone 8865 Version-
Cisco ≫ Ip Phone 8841 Version-
Cisco ≫ Ip Phone 8845 Version-
Cisco ≫ Ip Phone 8851 Version-
Cisco ≫ Ip Phone 8861 Version-
Cisco ≫ Ip Phone 8865 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.41% | 0.798 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|