CVE-2015-0652
Last modified
CVE-2015-0652 is a vulnerability of currently unknown severity. The Session Description Protocol (SDP) implementation in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X8.2 and Cisco TelePresence Conductor before XC2.4 allows remote attackers to cause a denial of service (mishandled exception and device reload) via a crafted media description, aka Bug IDs CSCus96593 and CSCun73192.. EPSS estimates a 1.90% chance of exploitation in the next 30 days.
Description
The Session Description Protocol (SDP) implementation in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X8.2 and Cisco TelePresence Conductor before XC2.4 allows remote attackers to cause a denial of service (mishandled exception and device reload) via a crafted media description, aka Bug IDs CSCus96593 and CSCun73192.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Cisco | Expressway Software | <= x8.1.1 | — |
| Cisco | Telepresence Conductor | <= xc2.4 | Prealpha0 |
| Cisco | Telepresence Video Communication Server Software | <= x8.1.1 | — |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-0652?
How severe is CVE-2015-0652?
How do I fix CVE-2015-0652?
Are you affected by CVE-2015-0652?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST