CVE-2010-2839

CWE-3994 documents4 sources
Severity
7.8HIGH
EPSS
0.4%
top 37.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Unified Presence Server
Timeline
PublishedAug 26
Latest updateMay 17

Description

SIPD in Cisco Unified Presence 6.x before 6.0(7) and 7.x before 7.0(8) allows remote attackers to cause a denial of service (stack memory corruption and process failure) via a malformed SIP message, aka Bug ID CSCtd14474.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

โ–ถNVDcisco/unified_presence_server22 versions+21

Patches

Patch: www.cisco.com โ†—Patch: www.cisco.com โ†—

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-5w79-rm63-fwvp: SIPD in Cisco Unified Presence 6โ†—2022-05-17
โ–ถ
CVEList
CVE-2010-2839: SIPD in Cisco Unified Presence 6โ†—2010-08-26
โ–ถ

๐Ÿ“‹Vendor Advisories

1
Cisco
Cisco Unified Presence Denial of Service Vulnerabilitiesโ†—2010-08-25
โ–ถ