CVE-2016-6448

2016-11-0321:00:00

cisco

www.cve.org

AI Score

9.8

Confidence

High

EPSS

0.026

Percentile

90.4%

JSON

A vulnerability in the Session Description Protocol (SDP) parser of Cisco Meeting Server could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior to Release 2.0.3, Acano Server releases 1.9.x prior to Release 1.9.5, Acano Server releases 1.8.x prior to Release 1.8.17. More Information: CSCva76004. Known Affected Releases: 1.8.x 1.92.0.

CNA Affected

[
  {
    "product": "Cisco Meeting Server before 2.0.3 and Acano Server before 1.9.5",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cisco Meeting Server before 2.0.3 and Acano Server before 1.9.5"
      }
    ]
  }
]