CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
48.4%
Cisco Unified Communications Manager (Unified CM) 8.5(x) and 8.6(x) before 8.6(2a)su3 and 9.x before 9.1(1) does not properly restrict the rate of SIP packets, which allows remote attackers to cause a denial of service (memory and CPU consumption, and service disruption) via a flood of UDP packets to port 5060, aka Bug ID CSCub35869.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | unified_communications_manager | 9.0(1) | cpe:2.3:a:cisco:unified_communications_manager:9.0\(1\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 8.5 | cpe:2.3:a:cisco:unified_communications_manager:8.5:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 8.5(1) | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\):*:*:*:*:*:*:* |
cisco | unified_communications_manager | 8.5(1)su1 | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\)su1:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 8.5(1)su2 | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\)su2:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 8.5(1)su3 | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\)su3:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 8.5(1)su4 | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\)su4:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 8.5(1)su5 | cpe:2.3:a:cisco:unified_communications_manager:8.5\(1\)su5:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 8.6 | cpe:2.3:a:cisco:unified_communications_manager:8.6:*:*:*:*:*:*:* |
cisco | unified_communications_manager | 8.6(1) | cpe:2.3:a:cisco:unified_communications_manager:8.6\(1\):*:*:*:*:*:*:* |