Cisco » Unified Communications Manager : Security Vulnerabilities, CVEs, Published In 2013 (Gain Privilege)
Cisco Unified Communications Manager (CUCM) does not properly limit the rate of authentication attempts, which allows remote attackers to cause a denial of service (application slowdown) via a series of requests, aka Bug ID CSCud39515.
Max CVSS
5.0
EPSS Score
0.13%
Published
2013-05-16
Updated
2013-05-16
The Location Bandwidth Manager (LBM) Intracluster-communication feature in Cisco Unified Communications Manager (CUCM) 9.x before 9.1(1) does not require authentication from the remote LBM Hub node, which allows remote attackers to conduct cache-poisoning attacks against transaction records, and cause a denial of service (bandwidth-pool consumption and call outage), via unspecified vectors, aka Bug ID CSCub28920.
Max CVSS
7.1
EPSS Score
0.13%
Published
2013-02-27
Updated
2013-02-28
2 vulnerabilities found