CVE-2017-6790

MEDIUM

Cisco TelePresence Video Communication Server - DoS

Title source: llm

Description

A vulnerability in the Session Initiation Protocol (SIP) on the Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the targeted appliance. The vulnerability is due to excessive SIP traffic sent to the device. An attacker could exploit this vulnerability by transmitting large volumes of SIP traffic to the VCS. An exploit could allow the attacker to cause a complete DoS condition on the targeted system. Cisco Bug IDs: CSCve32897.

References (3)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/100369

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1039185

[Vendor Advisory] https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-vcs

Scores

CVSS v3 6.8

EPSS 0.0180

EPSS Percentile 82.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

Details

Status published

Products (7)

cisco/telepresence_video_communication_server

Cisco Systems, Inc./TelePresence Video Communication Server (VCS)

Published Aug 17, 2017

Tracked Since Feb 18, 2026