Cisco TelePresence Supervisor MSE 8050 Denial of Service Vulnerability

2013-05-1516:00:00

tools.cisco.com

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.001

Percentile

49.5%

JSON

Cisco TelePresence Supervisor MSE 8050 contains a vulnerability that may allow an unauthenticated, remote attacker to cause high CPU utilization and a reload of the affected system.

Cisco has released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130515-mse[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130515-mse”]

Affected configurations

Vulners

Node

ciscotelepresence_supervisor_mse_8050_softwareMatchany

ciscotelepresence_supervisor_mse_8050Match8050_software

VendorProductVersionCPE
ciscotelepresence_supervisor_mse_8050_softwareanycpe:2.3:a:cisco:telepresence_supervisor_mse_8050_software:any:*:*:*:*:*:*:*
ciscotelepresence_supervisor_mse_80508050_softwarecpe:2.3:h:cisco:telepresence_supervisor_mse_8050:8050_software:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	telepresence_supervisor_mse_8050_software	any	cpe:2.3:a:cisco:telepresence_supervisor_mse_8050_software:any:::::::*
cisco	telepresence_supervisor_mse_8050	8050_software	cpe:2.3:h:cisco:telepresence_supervisor_mse_8050:8050_software:::::::*