Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2017-6648
HistoryJun 08, 2017 - 1:29 p.m.

CVE-2017-6648

2017-06-0813:29:00
CWE-399
[email protected]
web.nvd.nist.gov
3

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.004

Percentile

72.1%

JSON

A vulnerability in the Session Initiation Protocol (SIP) of the Cisco TelePresence Codec (TC) and Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause a TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of flow-control mechanisms within the software. An attacker could exploit this vulnerability by sending a flood of SIP INVITE packets to the affected device. An exploit could allow the attacker to impact the availability of services and data of the device, including a complete DoS condition. This vulnerability affects the following Cisco TC and CE platforms when running software versions prior to TC 7.3.8 and CE 8.3.0. Cisco Bug IDs: CSCux94002.

Affected configurations

Nvd
Node
ciscotelepresence_ce_softwareMatch8.2.2
OR
ciscotelepresence_tc_softwareMatch3.1.5
OR
ciscotelepresence_tc_softwareMatch3.1_base
OR
ciscotelepresence_tc_softwareMatch4.1.0
OR
ciscotelepresence_tc_softwareMatch4.1.1
OR
ciscotelepresence_tc_softwareMatch4.1.2
OR
ciscotelepresence_tc_softwareMatch4.1_base
OR
ciscotelepresence_tc_softwareMatch4.2.0
OR
ciscotelepresence_tc_softwareMatch4.2.1
OR
ciscotelepresence_tc_softwareMatch4.2.2
OR
ciscotelepresence_tc_softwareMatch4.2.3
OR
ciscotelepresence_tc_softwareMatch4.2.4
OR
ciscotelepresence_tc_softwareMatch4.2_base
OR
ciscotelepresence_tc_softwareMatch5.0.2
OR
ciscotelepresence_tc_softwareMatch5.0.2-cucm
OR
ciscotelepresence_tc_softwareMatch5.0_base
OR
ciscotelepresence_tc_softwareMatch5.1.3
OR
ciscotelepresence_tc_softwareMatch5.1.3-cucm
OR
ciscotelepresence_tc_softwareMatch5.1.4
OR
ciscotelepresence_tc_softwareMatch5.1.4-cucm
OR
ciscotelepresence_tc_softwareMatch5.1.5
OR
ciscotelepresence_tc_softwareMatch5.1.5-cucm
OR
ciscotelepresence_tc_softwareMatch5.1.6
OR
ciscotelepresence_tc_softwareMatch5.1.6-cucm
OR
ciscotelepresence_tc_softwareMatch5.1.7
OR
ciscotelepresence_tc_softwareMatch5.1.7-cucm
OR
ciscotelepresence_tc_softwareMatch5.1.11
OR
ciscotelepresence_tc_softwareMatch5.1.13
OR
ciscotelepresence_tc_softwareMatch5.1_base
OR
ciscotelepresence_tc_softwareMatch6.0.0
OR
ciscotelepresence_tc_softwareMatch6.0.0-cucm
OR
ciscotelepresence_tc_softwareMatch6.0.1
OR
ciscotelepresence_tc_softwareMatch6.0.1-cucm
OR
ciscotelepresence_tc_softwareMatch6.0.2
OR
ciscotelepresence_tc_softwareMatch6.0.3
OR
ciscotelepresence_tc_softwareMatch6.0.4
OR
ciscotelepresence_tc_softwareMatch6.0_base
OR
ciscotelepresence_tc_softwareMatch6.1.0
OR
ciscotelepresence_tc_softwareMatch6.1.0-cucm
OR
ciscotelepresence_tc_softwareMatch6.1.1
OR
ciscotelepresence_tc_softwareMatch6.1.1-cucm
OR
ciscotelepresence_tc_softwareMatch6.1.2
OR
ciscotelepresence_tc_softwareMatch6.1.2-cucm
OR
ciscotelepresence_tc_softwareMatch6.1.3
OR
ciscotelepresence_tc_softwareMatch6.1.4
OR
ciscotelepresence_tc_softwareMatch6.1_base
OR
ciscotelepresence_tc_softwareMatch6.3.0
OR
ciscotelepresence_tc_softwareMatch6.3.1
OR
ciscotelepresence_tc_softwareMatch6.3.2
OR
ciscotelepresence_tc_softwareMatch6.3.3
OR
ciscotelepresence_tc_softwareMatch6.3.4
OR
ciscotelepresence_tc_softwareMatch6.3.5
OR
ciscotelepresence_tc_softwareMatch7.1.0
OR
ciscotelepresence_tc_softwareMatch7.1.1
OR
ciscotelepresence_tc_softwareMatch7.1.2
OR
ciscotelepresence_tc_softwareMatch7.1.3
OR
ciscotelepresence_tc_softwareMatch7.1.4
OR
ciscotelepresence_tc_softwareMatch7.2.0
OR
ciscotelepresence_tc_softwareMatch7.2.1
OR
ciscotelepresence_tc_softwareMatch7.3.0
OR
ciscotelepresence_tc_softwareMatch7.3.1
OR
ciscotelepresence_tc_softwareMatch7.3.2
OR
ciscotelepresence_tc_softwareMatch7.3.3
OR
ciscotelepresence_tc_softwareMatch7.3.6
OR
ciscotelepresence_tc_softwareMatch7.3.7
OR
ciscotelepresence_tc_softwareMatch8.2.0
OR
ciscotelepresence_tc_softwareMatch8.2.1
VendorProductVersionCPE
ciscotelepresence_ce_software8.2.2cpe:2.3:a:cisco:telepresence_ce_software:8.2.2:*:*:*:*:*:*:*
ciscotelepresence_tc_software3.1.5cpe:2.3:a:cisco:telepresence_tc_software:3.1.5:*:*:*:*:*:*:*
ciscotelepresence_tc_software3.1_basecpe:2.3:a:cisco:telepresence_tc_software:3.1_base:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.1.0cpe:2.3:a:cisco:telepresence_tc_software:4.1.0:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.1.1cpe:2.3:a:cisco:telepresence_tc_software:4.1.1:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.1.2cpe:2.3:a:cisco:telepresence_tc_software:4.1.2:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.1_basecpe:2.3:a:cisco:telepresence_tc_software:4.1_base:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.2.0cpe:2.3:a:cisco:telepresence_tc_software:4.2.0:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.2.1cpe:2.3:a:cisco:telepresence_tc_software:4.2.1:*:*:*:*:*:*:*
ciscotelepresence_tc_software4.2.2cpe:2.3:a:cisco:telepresence_tc_software:4.2.2:*:*:*:*:*:*:*
Rows per page:
1-10 of 671

Related

openvas 1
nessus 1
prion 1
cvelist 1
cisco 1
cve 1
openvas
openvas
Cisco TelePresence CE and TC Software 'SIP' DoS Vulnerability (cisco-sa-20170607-tele)
2017-06-08 00:00:00
nessus
nessus
Cisco TelePresence Endpoint SIP INVITE Packet Flood DoS (cisco-sa-20170607-tele)
2017-06-16 00:00:00
prion
prion
Race condition
2017-06-08 13:29:00
cvelist
cvelist
CVE-2017-6648
2017-06-08 13:00:00
cisco
cisco
Cisco TelePresence Endpoint Denial of Service Vulnerability
2017-06-07 16:00:00
cve
cve
CVE-2017-6648
2017-06-08 13:29:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.004

Percentile

72.1%

JSON
Related for NVD:CVE-2017-6648
openvas1nessus1prion1cvelist1cisco1cve1