CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
EPSS
Percentile
43.4%
A vulnerability in the HTTP processing module of the Cisco Videoscape Distribution Suite for Internet Streaming (VDS-IS) and Cisco Videoscape Distribution Suite Service Broker (VDS-SB) could allow an unauthenticated, remote attacker to cause a reload of the affected device.
The vulnerability is due to improper input validation. An attacker could exploit this vulnerability by sending a crafted HTTP request to a vulnerable device. An exploit could allow the attacker to cause a denial of service (DoS) condition.
There is no workaround that mitigates this vulnerability.
Cisco has released software updates that address this vulnerability for Cisco VDS-IS.
This advisory is available at the following link:
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | videoscape_distribution_suite_for_internet_streaming | any | cpe:2.3:a:cisco:videoscape_distribution_suite_for_internet_streaming:any:*:*:*:*:*:*:* |
cisco | videoscape_distribution_suite_service_broker | any | cpe:2.3:a:cisco:videoscape_distribution_suite_service_broker:any:*:*:*:*:*:*:* |