Strix
26.1K

CVE-2017-6648

UnknownEPSS 3.56%

Last modified

CVE-2017-6648 is a vulnerability of currently unknown severity. A vulnerability in the Session Initiation Protocol (SIP) of the Cisco TelePresence Codec (TC) and Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause a TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of flow-control mechanisms within the software. EPSS estimates a 3.56% chance of exploitation in the next 30 days.

Description

A vulnerability in the Session Initiation Protocol (SIP) of the Cisco TelePresence Codec (TC) and Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause a TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of flow-control mechanisms within the software. An attacker could exploit this vulnerability by sending a flood of SIP INVITE packets to the affected device. An exploit could allow the attacker to impact the availability of services and data of the device, including a complete DoS condition. This vulnerability affects the following Cisco TC and CE platforms when running software versions prior to TC 7.3.8 and CE 8.3.0. Cisco Bug IDs: CSCux94002.

Metrics

EPSS Probability
3.56%

87.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoTelepresence Ce Software8.2.2
CiscoTelepresence Tc Software3.1.5
CiscoTelepresence Tc Software3.1_base
CiscoTelepresence Tc Software4.1.0
CiscoTelepresence Tc Software4.1.1
CiscoTelepresence Tc Software4.1.2
CiscoTelepresence Tc Software4.1_base
CiscoTelepresence Tc Software4.2.0
CiscoTelepresence Tc Software4.2.1
CiscoTelepresence Tc Software4.2.2
CiscoTelepresence Tc Software4.2.3
CiscoTelepresence Tc Software4.2.4
CiscoTelepresence Tc Software4.2_base
CiscoTelepresence Tc Software5.0.2
CiscoTelepresence Tc Software5.0.2-cucm
CiscoTelepresence Tc Software5.0_base
CiscoTelepresence Tc Software5.1.3
CiscoTelepresence Tc Software5.1.3-cucm
CiscoTelepresence Tc Software5.1.4
CiscoTelepresence Tc Software5.1.4-cucm
CiscoTelepresence Tc Software5.1.5
CiscoTelepresence Tc Software5.1.5-cucm
CiscoTelepresence Tc Software5.1.6
CiscoTelepresence Tc Software5.1.6-cucm
CiscoTelepresence Tc Software5.1.7
CiscoTelepresence Tc Software5.1.7-cucm
CiscoTelepresence Tc Software5.1.11
CiscoTelepresence Tc Software5.1.13
CiscoTelepresence Tc Software5.1_base
CiscoTelepresence Tc Software6.0.0
CiscoTelepresence Tc Software6.0.0-cucm
CiscoTelepresence Tc Software6.0.1
CiscoTelepresence Tc Software6.0.1-cucm
CiscoTelepresence Tc Software6.0.2
CiscoTelepresence Tc Software6.0.3
CiscoTelepresence Tc Software6.0.4
CiscoTelepresence Tc Software6.0_base
CiscoTelepresence Tc Software6.1.0
CiscoTelepresence Tc Software6.1.0-cucm
CiscoTelepresence Tc Software6.1.1
CiscoTelepresence Tc Software6.1.1-cucm
CiscoTelepresence Tc Software6.1.2
CiscoTelepresence Tc Software6.1.2-cucm
CiscoTelepresence Tc Software6.1.3
CiscoTelepresence Tc Software6.1.4
CiscoTelepresence Tc Software6.1_base
CiscoTelepresence Tc Software6.3.0
CiscoTelepresence Tc Software6.3.1
CiscoTelepresence Tc Software6.3.2
CiscoTelepresence Tc Software6.3.3

Showing 50 of 67 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2017-6648?
A vulnerability in the Session Initiation Protocol (SIP) of the Cisco TelePresence Codec (TC) and Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause a TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of flow-control mechanisms within the software. An attacker could exploit this vulnerability by sending a flood of SIP INVITE packets to the affected device. An exploit could allow the attacker to impact the availability of services and data of the device, including a complete DoS condition. This vulnerability affects the following Cisco TC and CE platforms when running software versions prior to TC 7.3.8 and CE 8.3.0. Cisco Bug IDs: CSCux94002.
How severe is CVE-2017-6648?
Severity scoring for CVE-2017-6648 is pending analysis. The EPSS model estimates a 3.56% probability of exploitation in the next 30 days.
How do I fix CVE-2017-6648?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-6648?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST