Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20180606-IP-PHONE-DOS
HistoryJun 06, 2018 - 4:00 p.m.

Cisco Unified IP Phone Software Denial of Service Vulnerability

2018-06-0616:00:00
tools.cisco.com
38

0.002 Low

EPSS

Percentile

62.0%

JSON

A vulnerability in the Session Initiation Protocol (SIP) ingress packet processing of Cisco Unified IP Phone software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

The vulnerability is due to a lack of flow-control mechanisms in the software. An attacker could exploit this vulnerability by sending high volumes of SIP INVITE traffic to the targeted device. Successful exploitation could allow the attacker to cause a disruption of services on the targeted IP phone.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-ip-phone-dos [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-ip-phone-dos”]

Affected configurations

Vulners
Node
ciscounified_ip_phones_9900_series_firmwareMatchany
OR
ciscoip_phone_8800_seriesMatchany
OR
ciscoip_phone_8800_seriesMatchany
OR
ciscoip_phone_8800_seriesMatchany
OR
ciscoip_phone_8800_seriesMatchany
OR
ciscounified_ip_ivrMatch9900_series_firmware
OR
ciscoip_phone_8800_seriesMatch8800_series_software
OR
ciscoip_phone_8800_seriesMatch7800_series
OR
ciscounified_ip_phoneMatch7900_series
OR
ciscounified_ip_phoneMatch6900_series

Related

cve 1
prion 1
nessus 1
nvd 1
cvelist 1
cve
cve
CVE-2018-0332
2018-06-07 21:29:00
prion
prion
Race condition
2018-06-07 21:29:00
nessus
nessus
Cisco Unified IP Phone Software Denial of Service (CVE-2018-0332)
2024-03-18 00:00:00
nvd
nvd
CVE-2018-0332
2018-06-07 21:29:00
cvelist
cvelist
CVE-2018-0332
2018-06-07 21:00:00

0.002 Low

EPSS

Percentile

62.0%

JSON
Related for CISCO-SA-20180606-IP-PHONE-DOS
cve1prion1nessus1nvd1cvelist1