CVE-2010-0592Cisco Unified Communications Manager vulnerability

CWE-3994 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.6%
top 30.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Unified Communications Manager
Timeline
PublishedMar 5
Latest updateMay 2

Description

The CTI Manager service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x before 4.3(2)sr1a, 6.x before 6.1(3), 7.0x before 7.0(2), 7.1x before 7.1(2), and 8.x before 8.0(1) allows remote attackers to cause a denial of service (service failure) via a malformed message, aka Bug ID CSCsu31800.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

Patches

Patch: www.cisco.comPatch: www.cisco.com

🔴Vulnerability Details

2
GHSA
GHSA-w894-vq8g-mxr7: The CTI Manager service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 42022-05-02
CVEList
CVE-2010-0592: The CTI Manager service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 42010-03-05

📋Vendor Advisories

1
Cisco
Cisco Digital Media Player Remote Display Unauthorized Content Injection Vulnerability2010-03-03
CVE-2010-0592 — Cisco vulnerability | cvebase