Lucene search
CiscoCVE-2013-3461HistoryAug 25, 2013 - 3:27 a.m.
CVE-2013-3461
2013-08-2503:27:32
CWE-399
cisco
web.nvd.nist.gov
27
cisco
unified communications manager
cve-2013-3461
denial of service
vulnerability
udp flood
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
48.4%
Cisco Unified Communications Manager (Unified CM) 8.5(x) and 8.6(x) before 8.6(2a)su3 and 9.x before 9.1(1) does not properly restrict the rate of SIP packets, which allows remote attackers to cause a denial of service (memory and CPU consumption, and service disruption) via a flood of UDP packets to port 5060, aka Bug ID CSCub35869.
Affected configurations
Node
ciscounified_communications_managerMatch9.0\(1\)
Node
ciscounified_communications_managerMatch8.5
ORciscounified_communications_managerMatch8.5\(1\)
ORciscounified_communications_managerMatch8.5\(1\)su1
ORciscounified_communications_managerMatch8.5\(1\)su2
ORciscounified_communications_managerMatch8.5\(1\)su3
ORciscounified_communications_managerMatch8.5\(1\)su4
ORciscounified_communications_managerMatch8.5\(1\)su5
Node
ciscounified_communications_managerMatch8.6
ORciscounified_communications_managerMatch8.6\(1\)
ORciscounified_communications_managerMatch8.6\(1a\)
ORciscounified_communications_managerMatch8.6\(2\)
ORciscounified_communications_managerMatch8.6\(2a\)
ORciscounified_communications_managerMatch8.6\(2a\)su1
ORciscounified_communications_managerMatch8.6\(2a\)su2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | unified_communications_manager | 9.0(1) | cpe:2.3:a:cisco:unified_communications_manager:9.0\(1\):*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 8.5 | cpe:2.3:a:cisco:unified_communications_manager:8.5:*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 8.5(1) | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\):*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 8.5(1)su1 | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\)su1:*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 8.5(1)su2 | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\)su2:*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 8.5(1)su3 | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\)su3:*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 8.5(1)su4 | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\)su4:*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 8.5(1)su5 | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\)su5:*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 8.6 | cpe:2.3:a:cisco:unified_communications_manager:8.6:*:*:*:*:*:*:* |
| cisco | unified_communications_manager | 8.6(1) | cpe:2.3:a:cisco:unified_communications_manager:8.6\(1\):*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2013-08-25 03:27:00
nvd
nvd
CVE-2013-3461
2013-08-25 03:27:32
cvelist
cvelist
CVE-2013-3461
2013-08-25 01:00:00
nessus
nessus
Cisco Unified Communications Manager SIP DoS (CSCub85597)
2013-09-24 00:00:00
cisco
cisco
Multiple Vulnerabilities in Cisco Unified Communications Manager
2013-08-21 16:00:00
securityvulns
securityvulns
Cisco Unified Communications Manager multiple security vulnerabilities
2013-07-19 00:00:00
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
48.4%
Related for CVE-2013-3461