Kaspersky LabKLA10532KLA10532 Denial of service vulnerabilities in Cisco Unity Connection
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
Confidence
Low
EPSS
Percentile
56.0%
An unspecified vulnerabilities were found in Cisco Unity Connector. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via SIP messages, sessions and connections manipulation.
Original advisories
Related products
CVE list
CVE-2015-0614 high
CVE-2015-0615 high
CVE-2015-0616 high
CVE-2015-0612 high
CVE-2015-0613 high
Solution
Wait for solution by vendor or reconfigure your instance to disable SIP trunk integration
Impacts
- DoS
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Affected Products
- Cisco Unity Connection 8.5 versions earlier than 8.5(1)SU7Cisco Unity Connection 8.6 versions earlier than 8.6(2a)SU4Cisco Unity Connection 9 versions earlier than 9.1(2)SU2Cisco Unity Connection 10.0 versions earlier than 10.0(1)SU1
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
Confidence
Low
EPSS
Percentile
56.0%