CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
95.0%
The Skinny Call Control Protocol (SCCP) implementation in Cisco Unified CallManager (CUCM) 3.3 before 3.3(5)SR2a, 4.1 before 4.1(3)SR4, 4.2 before 4.2(3)SR1, and 5.0 before 5.0(4a)SU1 allows remote attackers to cause a denial of service (loss of voice services) by sending crafted packets to the (1) SCCP (2000/tcp) or (2) SCCPS (2443/tcp) port.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | unified_callmanager | 3.3 | cpe:2.3:a:cisco:unified_callmanager:3.3:*:*:*:*:*:*:* |
cisco | unified_callmanager | 3.3(2) | cpe:2.3:a:cisco:unified_callmanager:3.3\(2\):*:*:*:*:*:*:* |
cisco | unified_callmanager | 3.3(2)spb | cpe:2.3:a:cisco:unified_callmanager:3.3\(2\)spb:*:*:*:*:*:*:* |
cisco | unified_callmanager | 3.3(2)spc | cpe:2.3:a:cisco:unified_callmanager:3.3\(2\)spc:*:*:*:*:*:*:* |
cisco | unified_callmanager | 3.3(3) | cpe:2.3:a:cisco:unified_callmanager:3.3\(3\):*:*:*:*:*:*:* |
cisco | unified_callmanager | 3.3(3)sr1 | cpe:2.3:a:cisco:unified_callmanager:3.3\(3\)sr1:*:*:*:*:*:*:* |
cisco | unified_callmanager | 3.3(3)sr4 | cpe:2.3:a:cisco:unified_callmanager:3.3\(3\)sr4:*:*:*:*:*:*:* |
cisco | unified_callmanager | 3.3(4) | cpe:2.3:a:cisco:unified_callmanager:3.3\(4\):*:*:*:*:*:*:* |
cisco | unified_callmanager | 3.3(4)sr1a | cpe:2.3:a:cisco:unified_callmanager:3.3\(4\)sr1a:*:*:*:*:*:*:* |
cisco | unified_callmanager | 3.3(5) | cpe:2.3:a:cisco:unified_callmanager:3.3\(5\):*:*:*:*:*:*:* |