Description
A vulnerability in the interdevice communications interface of the Cisco IP Interoperability and Collaboration System (IPICS) Universal Media Services (UMS) could allow an unauthenticated, remote attacker to modify configuration parameters of the UMS and cause the system to become unavailable. Affected Products: This vulnerability affects Cisco IPICS releases 4.8(1) to 4.10(1). More Information: CSCva46644. Known Affected Releases: 4.10(1) 4.8(1) 4.8(2) 4.9(1) 4.9(2).
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161026-ipics
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/93913
Scores
CVSS v3
9.8
EPSS
0.0217
EPSS Percentile
80.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (6)
cisco/ip_interoperability_and_collaboration_system
4.8\(1\)
cisco/ip_interoperability_and_collaboration_system
4.8\(2\)
cisco/ip_interoperability_and_collaboration_system
4.9\(1\)
cisco/ip_interoperability_and_collaboration_system
4.9\(2\)
cisco/ip_interoperability_and_collaboration_system
4.10\(1\)
n/a/Cisco IPICS 4.8(1) to 4.10(1)
Cisco IPICS 4.8(1) to 4.10(1)
Published
Oct 28, 2016
Tracked Since
Feb 18, 2026