Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-20783
HistoryApr 21, 2022 - 7:15 p.m.

CVE-2022-20783

2022-04-2119:15:08
CWE-20
CWE-1287
[email protected]
web.nvd.nist.gov
2
cisco
telepresence
collaboration
endpoint
software
roomos
vulnerability
unauthenticated
remote
attacker
denial of service
dos
insufficient input validation
h.323 traffic
exploit

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

49.5%

JSON

A vulnerability in the packet processing functionality of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted H.323 traffic to an affected device. A successful exploit could allow the attacker to cause the affected device to either reboot normally or reboot into maintenance mode, which could result in a DoS condition on the device.

Affected configurations

Nvd
Node
ciscotelepresence_collaboration_endpointRange<9.15.10.8
OR
ciscotelepresence_collaboration_endpointRange10.0.0.010.11.2.2
OR
ciscoroomosRange<2022
VendorProductVersionCPE
ciscotelepresence_collaboration_endpoint*cpe:2.3:a:cisco:telepresence_collaboration_endpoint:*:*:*:*:*:*:*:*
ciscoroomos*cpe:2.3:o:cisco:roomos:*:*:*:*:*:*:*:*

Related

nessus 1
cve 1
prion 1
cvelist 1
cisco 1
thn 1
nessus
nessus
Cisco TelePresence Collaboration Endpoint Software H.323 DoS (cisco-sa-ce-roomos-dos-c65x2Qf2)
2022-04-28 00:00:00
cve
cve
CVE-2022-20783
2022-04-21 19:15:08
prion
prion
Input validation
2022-04-21 19:15:00
cvelist
cvelist
CVE-2022-20783 Cisco TelePresence Collaboration Endpoint and RoomOS Software H.323 Denial of Service Vulnerability
2022-04-21 18:50:16
cisco
cisco
Cisco TelePresence Collaboration Endpoint and RoomOS Software H.323 Denial of Service Vulnerability
2022-04-20 16:00:00
thn
thn
Cisco Releases Security Patches for TelePresence, RoomOS and Umbrella VA
2022-04-22 05:15:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

49.5%

JSON
Related for NVD:CVE-2022-20783
nessus1cve1prion1cvelist1cisco1thn1