CVE-2019-1845 Cisco Unified Communications Manager IM&P Service, Cisco TelePresence VCS, and Cisco Expressway Series Denial of Service Vulnerability

🗓️ 05 Jun 2019 16:25:30Reported by ciscoType

Cisco Unified Communications Manager DoS Vulnerabilit

Reporter	Title	Published	Views	Family All 9
BDU FSTEC	The vulnerabilities of the software for Cisco TelePresence Video Communication Server and Cisco Expressway Series, as well as the Unified Communications Manager IM and Presence Service software, are due to insufficient validation of input data. This allows attackers to trigger service failures.	18 Jun 201900:00	–	bdu_fstec
Cisco	Cisco Unified Communications Manager IM&P Service, Cisco TelePresence VCS, and Cisco Expressway Series Denial of Service Vulnerability	5 Jun 201916:00	–	cisco
CVE	CVE-2019-1845	5 Jun 201916:25	–	cve
EUVD	EUVD-2019-10402	7 Oct 202500:30	–	euvd
NVD	CVE-2019-1845	5 Jun 201917:29	–	nvd
OSV	CVE-2019-1845	5 Jun 201917:29	–	osv
Prion	Race condition	5 Jun 201917:29	–	prion
ThreatPost	High-Severity Bug in Cisco Industrial Enterprise Tool Allows RCE	6 Jun 201917:43	–	threatpost
Vulnrichment	CVE-2019-1845 Cisco Unified Communications Manager IM&P Service, Cisco TelePresence VCS, and Cisco Expressway Series Denial of Service Vulnerability	5 Jun 201916:25	–	vulnrichment

[
  {
    "product": "Cisco TelePresence Video Communication Server (VCS)",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "12.5(1)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190605-cucm-imp-dos
securityfocus	www.securityfocus.com/bid/108615

06 Jun 2019 08:06Current

8.6High risk

Vulners AI Score8.6

CVSS 38.6

EPSS0.09319

CWE-20