CVE-2016-6448
Published Nov 3, 2016
Last updated 7 years ago
Overview
- Description
- A vulnerability in the Session Description Protocol (SDP) parser of Cisco Meeting Server could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior to Release 2.0.3, Acano Server releases 1.9.x prior to Release 1.9.5, Acano Server releases 1.8.x prior to Release 1.8.17. More Information: CSCva76004. Known Affected Releases: 1.8.x 1.92.0.
- Source
- ykramarz@cisco.com
- NVD status
- Modified
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-119
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:meeting_server:1.8.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B8E4843E-E44A-42E8-B83D-AEFC7A8BCE13"
},
{
"criteria": "cpe:2.3:a:cisco:meeting_server:1.8_base:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0CD09398-8DBF-4467-9BE3-A9297AE247AB"
},
{
"criteria": "cpe:2.3:a:cisco:meeting_server:1.9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1691992B-DD39-43CA-BD51-800EEE19F224"
},
{
"criteria": "cpe:2.3:a:cisco:meeting_server:1.9.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "53619071-8A6A-4230-BDEF-B0E1461217C0"
},
{
"criteria": "cpe:2.3:a:cisco:meeting_server:2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C48DC084-1DD2-4878-B1DB-1035CAE3B918"
},
{
"criteria": "cpe:2.3:a:cisco:meeting_server:2.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1CA9A904-9AB5-4757-ABD1-0F6F933799BE"
},
{
"criteria": "cpe:2.3:a:cisco:meeting_server:2.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8FA8A21E-97BA-4326-9F7B-FCBD480134EF"
},
{
"criteria": "cpe:2.3:a:cisco:meeting_server:2.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E6FA3F5-752D-45AB-A8CB-6488F409D933"
},
{
"criteria": "cpe:2.3:a:cisco:meeting_server:2.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4B80C9BA-07EC-4183-9AAD-3229913C9FD7"
}
],
"operator": "OR"
}
]
}
]