CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
90.3%
The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | ios_xe | 3.10s_3.10.0s | cpe:2.3:o:cisco:ios_xe:3.10s_3.10.0s:*:*:*:*:*:*:* |
cisco | ios_xe | 3.10s_3.10.1s | cpe:2.3:o:cisco:ios_xe:3.10s_3.10.1s:*:*:*:*:*:*:* |
cisco | ios_xe | 3.10s_3.10.1xbs | cpe:2.3:o:cisco:ios_xe:3.10s_3.10.1xbs:*:*:*:*:*:*:* |
cisco | ios_xe | 3.10s_3.10.2s | cpe:2.3:o:cisco:ios_xe:3.10s_3.10.2s:*:*:*:*:*:*:* |
cisco | ios_xe | 3.10s_3.10.2ts | cpe:2.3:o:cisco:ios_xe:3.10s_3.10.2ts:*:*:*:*:*:*:* |
cisco | ios_xe | 3.10s_3.10.4s | cpe:2.3:o:cisco:ios_xe:3.10s_3.10.4s:*:*:*:*:*:*:* |
cisco | ios_xe | 3.10s_3.10.5s | cpe:2.3:o:cisco:ios_xe:3.10s_3.10.5s:*:*:*:*:*:*:* |
cisco | ios_xe | 3.10s_3.10.6s | cpe:2.3:o:cisco:ios_xe:3.10s_3.10.6s:*:*:*:*:*:*:* |
cisco | ios_xe | 3.10s_3.10.7s | cpe:2.3:o:cisco:ios_xe:3.10s_3.10.7s:*:*:*:*:*:*:* |
cisco | ios_xe | 3.11s_3.11.0s | cpe:2.3:o:cisco:ios_xe:3.11s_3.11.0s:*:*:*:*:*:*:* |
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-libsrtp
www.debian.org/security/2016/dsa-3539
www.securitytracker.com/id/1035636
www.securitytracker.com/id/1035637
www.securitytracker.com/id/1035648
www.securitytracker.com/id/1035649
www.securitytracker.com/id/1035650
www.securitytracker.com/id/1035651
www.securitytracker.com/id/1035652
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
90.3%