Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the Interactive Voice Response (IVR) management connection interface for Cisco Unified Customer Voice Portal (CVP) could allow an unauthenticated, remote attacker to cause the IVR connection to disconnect, creating a system-wide denial of service (DoS) condition. The vulnerability is due to improper handling of a TCP connection request when the IVR connection is already established. An attacker could exploit this vulnerability by initiating a crafted connection to the IP address of the targeted CVP device. An exploit could allow the attacker to disconnect the IVR to CVP connection, creating a DoS condition that prevents the CVP from accepting new, incoming calls while the IVR automatically attempts to re-establish the connection to the CVP. This vulnerability affects Cisco Unified Customer Voice Portal (CVP) Software Release 11.5(1). Cisco Bug IDs: CSCve70560.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco Unified Customer Voice Portal Interactive Voice Response管理连接界面安全漏洞
Vulnerability Description
Cisco Unified Customer Voice Portal(CVP)是美国思科(Cisco)公司的一套用于提供语音和视频自助服务的统一通信系统。Interactive Voice Response(IVR)management connection interface是其中的一个为创建并交付IVR(交互式语音应答)应用提供了开放、可扩展、特性丰富的基础的连接组件。 Cisco Unified CVP 11.5(1)版本中的Interactive Voice Response (IVR)管理连接
CVSS Information
N/A
Vulnerability Type
N/A