CVE-2018-0332

Published Jun 7, 2018

Last updated 3 days ago

CVSS high 7.5

Overview

Description: A vulnerability in the Session Initiation Protocol (SIP) ingress packet processing of Cisco Unified IP Phone software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to a lack of flow-control mechanisms in the software. An attacker could exploit this vulnerability by sending high volumes of SIP INVITE traffic to the targeted device. Successful exploitation could allow the attacker to cause a disruption of services on the targeted IP phone. Cisco Bug IDs: CSCve10064, CSCve14617, CSCve14638, CSCve14683, CSCve20812, CSCve20926, CSCve20945.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

ykramarz@cisco.com: CWE-399
nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:unified_ip_phone_firmware:9.9\\(9.99002.1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D3D7A0C-A65C-4AA3-99A8-91142783802C"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_9951:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C0B483E7-0B8D-480B-94B9-93F00AE91B4B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_9971:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "FBF7ABE8-03D3-4ACA-834A-89D37D5EBFB2"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:unified_ip_phone_firmware:9.9\\(9.99002.1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D3D7A0C-A65C-4AA3-99A8-91142783802C"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7906g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "94B18568-30F5-40BF-96DB-589ED8D960F5"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7911g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0BF164BA-91F9-434B-9837-1B6E600A91AF"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7912g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DA43909C-9ED4-40B3-A179-48568BA5E4B3"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7931g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E0D51724-CA7C-4F8E-9C02-408A96E32860"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7940g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "84AEFB6F-3534-478A-97FF-C100A86A269E"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7941g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E7519FF0-672E-430F-980D-53D2A851C78C"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7942g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "37232BAF-C3BD-45A3-B54F-3DA2E15F2FBD"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7945g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5980E646-CA07-4222-A9DD-A71306A4A678"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7960g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7DFA9051-62CB-4C7B-9C97-CD901DC778F0"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7961g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C1B979DC-52B4-497E-9D7C-3D8F861E6E26"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7962g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8424EA40-BAEE-4503-A826-003C478D07F0"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7965g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "FF30D1CC-D27F-49FF-9C63-BB890002D1C2"
          },
          {
            "criteria": "cpe:2.3:h:cisco:unified_ip_phone_7975g:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8BA879B6-04D6-402A-8F38-8A7CB34D76F4"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ip_phone_firmware:9.4\\(2\\)sr3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7DCC90CA-7D61-4B77-BA39-D343E2A65A59"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_7811:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D7260C17-7067-47AD-995F-366A5E8B10E7"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_7821:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AE7AFFF0-5B21-400B-B923-E9B7FCCE08FA"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_7841:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "73CF8A50-11BD-4506-BF2A-CCA36BF59EFF"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_7861:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E52C420C-FD54-4BE4-8720-E05307D53520"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ip_phone_firmware:9.4\\(2\\)sr3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7DCC90CA-7D61-4B77-BA39-D343E2A65A59"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8811:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D0CC3127-3152-4906-9FE0-BC6F21DCADAA"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8841:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7944CC9C-AE08-4F30-AF65-134DADBD0FA1"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8845:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A313E64A-F43C-4FBA-A389-6171CBD709C0"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8851:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8AF6DC5E-F582-445E-BF05-2D55A0954663"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8861:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "090EE553-01D5-45F0-87A4-E1167F46EB77"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8865:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BB99B9AB-64B5-4989-9579-A1BB5D2D87EF"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ip_phone_firmware:9.4\\(2\\)sr4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BDD6E0D0-6B8D-4C72-80F9-BF43EAD22CA9"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8811:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D0CC3127-3152-4906-9FE0-BC6F21DCADAA"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8841:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7944CC9C-AE08-4F30-AF65-134DADBD0FA1"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8845:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A313E64A-F43C-4FBA-A389-6171CBD709C0"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8851:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8AF6DC5E-F582-445E-BF05-2D55A0954663"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8861:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "090EE553-01D5-45F0-87A4-E1167F46EB77"
          },
          {
            "criteria": "cpe:2.3:h:cisco:ip_phone_8865:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BB99B9AB-64B5-4989-9579-A1BB5D2D87EF"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References