cnvd - cnvd-2021-37689

cnvd-2021-37689

Vulnerability from cnvd

Title: Cisco Unified Communications Manager和Cisco Unified Communications Manager Session Management Edition拒绝服务漏洞

Description:

Cisco Unified Communications Manager是Cisco统一通信解决方案中强大的呼叫处理组件。它是一个可扩展、可分布、高度可用的企业IP语音呼叫处理解决方案。Cisco Unified Communications Manager Session Management Edition是会话管理版。

Cisco Unified Communications Manager (Unified CM)和Cisco Unified Communications Manager Session Management Edition (Unified CM SME) 12.6之前版本的Java管理扩展（JMX）组件存在拒绝服务漏洞，攻击者可通过访问该端口并重新启动JMX进程利用该漏洞导致拒绝服务。

Severity: 中

Patch Name: Cisco Unified Communications Manager和Cisco Unified Communications Manager Session Management Edition拒绝服务漏洞的补丁

Patch Description:

Formal description:

厂商已发布了漏洞修复程序，请及时关注更新： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucm-dos-OO4SRYEf

Reference: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucm-dos-OO4SRYEf

Impacted products

Name
['Cisco Unified Communications Manager 无', 'Cisco Unified Communications Manager Session Management Edition <12.6']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-1478",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-1478"
    }
  },
  "description": "Cisco Unified Communications Manager\u662fCisco\u7edf\u4e00\u901a\u4fe1\u89e3\u51b3\u65b9\u6848\u4e2d\u5f3a\u5927\u7684\u547c\u53eb\u5904\u7406\u7ec4\u4ef6\u3002\u5b83\u662f\u4e00\u4e2a\u53ef\u6269\u5c55\u3001\u53ef\u5206\u5e03\u3001\u9ad8\u5ea6\u53ef\u7528\u7684\u4f01\u4e1aIP\u8bed\u97f3\u547c\u53eb\u5904\u7406\u89e3\u51b3\u65b9\u6848\u3002Cisco Unified Communications Manager Session Management Edition\u662f\u4f1a\u8bdd\u7ba1\u7406\u7248\u3002\n\nCisco Unified Communications Manager (Unified CM)\u548cCisco Unified Communications Manager Session Management Edition (Unified CM SME) 12.6\u4e4b\u524d\u7248\u672c\u7684Java\u7ba1\u7406\u6269\u5c55\uff08JMX\uff09\u7ec4\u4ef6\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u8bbf\u95ee\u8be5\u7aef\u53e3\u5e76\u91cd\u65b0\u542f\u52a8JMX\u8fdb\u7a0b\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucm-dos-OO4SRYEf",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-37689",
  "openTime": "2021-05-28",
  "patchDescription": "Cisco Unified Communications Manager\u662fCisco\u7edf\u4e00\u901a\u4fe1\u89e3\u51b3\u65b9\u6848\u4e2d\u5f3a\u5927\u7684\u547c\u53eb\u5904\u7406\u7ec4\u4ef6\u3002\u5b83\u662f\u4e00\u4e2a\u53ef\u6269\u5c55\u3001\u53ef\u5206\u5e03\u3001\u9ad8\u5ea6\u53ef\u7528\u7684\u4f01\u4e1aIP\u8bed\u97f3\u547c\u53eb\u5904\u7406\u89e3\u51b3\u65b9\u6848\u3002Cisco Unified Communications Manager Session Management Edition\u662f\u4f1a\u8bdd\u7ba1\u7406\u7248\u3002\r\n\r\nCisco Unified Communications Manager (Unified CM)\u548cCisco Unified Communications Manager Session Management Edition (Unified CM SME) 12.6\u4e4b\u524d\u7248\u672c\u7684Java\u7ba1\u7406\u6269\u5c55\uff08JMX\uff09\u7ec4\u4ef6\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u8bbf\u95ee\u8be5\u7aef\u53e3\u5e76\u91cd\u65b0\u542f\u52a8JMX\u8fdb\u7a0b\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Unified Communications Manager\u548cCisco Unified Communications Manager Session Management Edition\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Cisco Unified Communications Manager \u65e0",
      "Cisco Unified Communications Manager Session Management Edition \u003c12.6"
    ]
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucm-dos-OO4SRYEf",
  "serverity": "\u4e2d",
  "submitTime": "2021-05-06",
  "title": "Cisco Unified Communications Manager\u548cCisco Unified Communications Manager Session Management Edition\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

CVE-2021-1478 (GCVE-0-2021-1478)

Vulnerability from cvelistv5

Published

2021-05-06 12:41

Modified

2024-11-08 23:20

Severity ?

5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE

CWE-284

Summary

A vulnerability in the Java Management Extensions (JMX) component of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected system. This vulnerability is due to an unsecured TCP/IP port. An attacker could exploit this vulnerability by accessing the port and restarting the JMX process. A successful exploit could allow the attacker to cause a DoS condition on an affected system.

References

▼	URL	Tags
	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucm-dos-OO4SRYEf	vendor-advisory, x_refsource_CISCO

Impacted products

	Vendor	Product	Version
	Cisco	Cisco Unified Communications Manager	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T16:11:17.550Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20210505 Cisco Unified Communications Manager Denial of Service Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucm-dos-OO4SRYEf"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-1478",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-08T20:01:42.318724Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-08T23:20:56.407Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Unified Communications Manager",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2021-05-05T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the Java Management Extensions (JMX) component of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected system. This vulnerability is due to an unsecured TCP/IP port. An attacker could exploit this vulnerability by accessing the port and restarting the JMX process. A successful exploit could allow the attacker to cause a DoS condition on an affected system."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "CWE-284",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-05-06T12:41:09",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "20210505 Cisco Unified Communications Manager Denial of Service Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucm-dos-OO4SRYEf"
        }
      ],
      "source": {
        "advisory": "cisco-sa-ucm-dos-OO4SRYEf",
        "defect": [
          [
            "CSCvx35894"
          ]
        ],
        "discovery": "INTERNAL"
      },
      "title": "Cisco Unified Communications Manager Denial of Service Vulnerability",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "DATE_PUBLIC": "2021-05-05T16:00:00",
          "ID": "CVE-2021-1478",
          "STATE": "PUBLIC",
          "TITLE": "Cisco Unified Communications Manager Denial of Service Vulnerability"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco Unified Communications Manager",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Cisco"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability in the Java Management Extensions (JMX) component of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected system. This vulnerability is due to an unsecured TCP/IP port. An attacker could exploit this vulnerability by accessing the port and restarting the JMX process. A successful exploit could allow the attacker to cause a DoS condition on an affected system."
            }
          ]
        },
        "exploit": [
          {
            "lang": "en",
            "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
          }
        ],
        "impact": {
          "cvss": {
            "baseScore": "5.3",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-284"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20210505 Cisco Unified Communications Manager Denial of Service Vulnerability",
              "refsource": "CISCO",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucm-dos-OO4SRYEf"
            }
          ]
        },
        "source": {
          "advisory": "cisco-sa-ucm-dos-OO4SRYEf",
          "defect": [
            [
              "CSCvx35894"
            ]
          ],
          "discovery": "INTERNAL"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2021-1478",
    "datePublished": "2021-05-06T12:41:09.584050Z",
    "dateReserved": "2020-11-13T00:00:00",
    "dateUpdated": "2024-11-08T23:20:56.407Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted