Vulnerability Details CVE-2012-2472
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 and 8.4, when SIP inspection is enabled, create many identical pre-allocated secondary pinholes, which might allow remote attackers to cause a denial of service (CPU consumption) via crafted SIP traffic, aka Bug ID CSCtz63143.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.3%
CVSS Severity
CVSS v2 Score 7.8
References
Products affected by CVE-2012-2472
-
cpe:2.3:h:cisco:5500_series_adaptive_security_appliance:-
-
cpe:2.3:h:cisco:5500_series_adaptive_security_appliance:7.2
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(3.9)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4.1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4.4)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(5)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.1
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.3
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1.11)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(2.11)