Lucene search

CiscoCVE-2015-6310

HistoryOct 08, 2015 - 8:59 p.m.

CVE-2015-6310

2015-10-0820:59:01

CWE-399

cisco

web.nvd.nist.gov

cisco

unified communications manager

denial of service

sip

security vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

43.4%

JSON

The REST interface in Cisco Unified Communications Manager IM and Presence Service 11.5(1) allows remote attackers to cause a denial of service (SIP proxy service restart) via a crafted HTTP request, aka Bug ID CSCuw31632.

Affected configurations

Nvd

Node

ciscounified_communications_manager_im_and_presence_serviceMatch11.5\(1\)

VendorProductVersionCPE
ciscounified_communications_manager_im_and_presence_service11.5(1)cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:11.5\(1\):*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	unified_communications_manager_im_and_presence_service	11.5(1)	cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:11.5\(1\):::::::*

References

tools.cisco.com/security/center/viewAlert.x?alertId=41242

www.securitytracker.com/id/1033732

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

43.4%

JSON

Related for CVE-2015-6310