Vulnerability Details CVE-2015-0615
The call-handling implementation in Cisco Unity Connection 8.5 before 8.5(1)SU7, 8.6 before 8.6(2a)SU4, 9.x before 9.1(2)SU2, and 10.0 before 10.0(1)SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service (port consumption) by improperly terminating SIP sessions, aka Bug ID CSCul28089.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.6%
CVSS Severity
CVSS v2 Score 7.1
References
Products affected by CVE-2015-0615
-
cpe:2.3:a:cisco:unity_connection:10.0.0
-
cpe:2.3:a:cisco:unity_connection:10.0.5
-
cpe:2.3:a:cisco:unity_connection:8.5(1)
-
cpe:2.3:a:cisco:unity_connection:8.5(1)su1
-
cpe:2.3:a:cisco:unity_connection:8.5(1)su2
-
cpe:2.3:a:cisco:unity_connection:8.5(1)su3
-
cpe:2.3:a:cisco:unity_connection:8.5(1)su4
-
cpe:2.3:a:cisco:unity_connection:8.5(1)su5
-
cpe:2.3:a:cisco:unity_connection:8.5(1)su6
-
cpe:2.3:a:cisco:unity_connection:8.5_base
-
cpe:2.3:a:cisco:unity_connection:8.6(1)
-
cpe:2.3:a:cisco:unity_connection:8.6(1a)
-
cpe:2.3:a:cisco:unity_connection:8.6(2)
-
cpe:2.3:a:cisco:unity_connection:8.6(2a)
-
cpe:2.3:a:cisco:unity_connection:8.6(2a)su1
-
cpe:2.3:a:cisco:unity_connection:8.6(2a)su2
-
cpe:2.3:a:cisco:unity_connection:8.6(2a)su3
-
cpe:2.3:a:cisco:unity_connection:8.6_base
-
cpe:2.3:a:cisco:unity_connection:9.0(1)
-
cpe:2.3:a:cisco:unity_connection:9.1(1)
-
cpe:2.3:a:cisco:unity_connection:9.1(2)