CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
89.3%
The Certificate Authority Proxy Function (CAPF) service in Cisco Unified Communications Manager (CUCM) 4.1 before 4.1(3)SR7, 4.2 before 4.2(3)SR4, and 4.3 before 4.3(2) allows remote attackers to cause a denial of service (service crash) via malformed network traffic, aka Bug ID CSCsk46770.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | unified_callmanager | 4.1 | cpe:2.3:a:cisco:unified_callmanager:4.1:*:*:*:*:*:*:* |
cisco | unified_callmanager | 4.1_3_sr4 | cpe:2.3:a:cisco:unified_callmanager:4.1_3_sr4:*:*:*:*:*:*:* |
cisco | unified_callmanager | 4.1_3_sr5 | cpe:2.3:a:cisco:unified_callmanager:4.1_3_sr5:*:*:*:*:*:*:* |
cisco | unified_callmanager | 4.1_3_sr5b | cpe:2.3:a:cisco:unified_callmanager:4.1_3_sr5b:*:*:*:*:*:*:* |
cisco | unified_callmanager | 4.1_3_sr5c | cpe:2.3:a:cisco:unified_callmanager:4.1_3_sr5c:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 4.2_3_sr2 | cpe:2.3:a:cisco:unified_communications_manager:4.2_3_sr2:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 4.2_3_sr2b | cpe:2.3:a:cisco:unified_communications_manager:4.2_3_sr2b:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 4.2_3_sr3 | cpe:2.3:a:cisco:unified_communications_manager:4.2_3_sr3:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 4.3 | cpe:2.3:a:cisco:unified_communications_manager:4.3:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 4.3_1_sr1 | cpe:2.3:a:cisco:unified_communications_manager:4.3_1_sr1:*:*:*:*:*:*:* |