Vulnerability Details CVE-2016-1350
Cisco IOS 15.3 and 15.4, Cisco IOS XE 3.8 through 3.11, and Cisco Unified Communications Manager allow remote attackers to cause a denial of service (device reload) via malformed SIP messages, aka Bug ID CSCuj23293.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.024
EPSS Ranking 84.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.8
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-sip
- http://www.securityfocus.com/bid/85372
- http://www.securitytracker.com/id/1035420
- http://www.securitytracker.com/id/1035421
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-sip
- http://www.securityfocus.com/bid/85372
- http://www.securitytracker.com/id/1035420
- http://www.securitytracker.com/id/1035421
Products affected by CVE-2016-1350
-
cpe:2.3:o:cisco:ios_xe:3.10.0s
-
cpe:2.3:o:cisco:ios_xe:3.10.1s
-
cpe:2.3:o:cisco:ios_xe:3.10.1xbs
-
cpe:2.3:o:cisco:ios_xe:3.10.2s
-
cpe:2.3:o:cisco:ios_xe:3.11.0s
-
cpe:2.3:o:cisco:ios_xe:3.8.0s
-
cpe:2.3:o:cisco:ios_xe:3.8.1s
-
cpe:2.3:o:cisco:ios_xe:3.8.2s
-
cpe:2.3:o:cisco:ios_xe:3.9.0as
-
cpe:2.3:o:cisco:ios_xe:3.9.0s
-
cpe:2.3:o:cisco:ios_xe:3.9.1as
-
cpe:2.3:o:cisco:ios_xe:3.9.1s
-
cpe:2.3:o:cisco:ios_xe:3.9.2s
-
cpe:2.3:o:lenovo:thinkcentre_e75s_firmware:-
-
cpe:2.3:o:samsung:x14j_firmware:t-ms14jakucb-1102.5
-
cpe:2.3:o:sun:opensolaris:snv_124
-
cpe:2.3:o:zyxel:gs1900-10hp_firmware:-
-
cpe:2.3:o:zyxel:gs1900-10hp_firmware:2.40
-
cpe:2.3:o:zzinc:keymouse_firmware:3.08