Denial of Service Vulnerability in Cisco TelePresence Server and Related Products
CVE-2015-6312

7.5HIGH

Key Information:

Vendor: Dell
Status: Emc Powerscale Onefs; Jr6150 Firmware; Gs1900-10HP Firmware; Keymouse Firmware
Vendor: CVE Published:; 6 April 2016

Summary

A vulnerability exists in Cisco TelePresence Server 3.1 and several related devices that allows remote attackers to exploit malformed STUN packets. This can result in a denial of service, causing the affected devices to reload unexpectedly. Such disruptions can significantly impact communication systems reliant on these products, making it crucial for users to implement necessary mitigation strategies to protect their network infrastructure.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id/1035500

vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 6, 2016
Vulnerability Reserved
Aug 17, 2015