← Back

CVE-2013-3461

nvd nist
Published: Aug 25, 2013Modified: Apr 29, 2026

JSON object

Loading...
7.1
Vector
AV:N/AC:M/Au:N/C:N/I:N/A:C
Exploitability: 8.6 / Impact: 6.9
Source: NVD

Description

Cisco Unified Communications Manager (Unified CM) 8.5(x) and 8.6(x) before 8.6(2a)su3 and 9.x before 9.1(1) does not properly restrict the rate of SIP packets, which allows remote attackers to cause a denial of service (memory and CPU consumption, and service disruption) via a flood of UDP packets to port 5060, aka Bug ID CSCub35869.

Affected (15)

Cisco
1 product
Unified Communications Manager
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Unified Communications Manager
Version 9.0(1)
Configuration B
7 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Unified Communications Manager
Version 8.5
Unified Communications Manager
Version 8.5(1)
Unified Communications Manager
Version 8.5(1)su1
Unified Communications Manager
Version 8.5(1)su2
Unified Communications Manager
Version 8.5(1)su3
Unified Communications Manager
Version 8.5(1)su4
Unified Communications Manager
Version 8.5(1)su5
Configuration C
7 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Unified Communications Manager
Version 8.6
Unified Communications Manager
Version 8.6(1)
Unified Communications Manager
Version 8.6(1a)
Unified Communications Manager
Version 8.6(2)
Unified Communications Manager
Version 8.6(2a)
Unified Communications Manager
Version 8.6(2a)su1
Unified Communications Manager
Version 8.6(2a)su2

Related CWEs

CWE-399
CWE-399

References (4)

Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.