VIR Vulnerability Intelligence Relay

CVE-2013-3459

high
Published 2013-08-25 · Modified 2026-04-29
CVSS v3
CVSS v2
7.8
VIR risk
7.8

Description

Cisco Unified Communications Manager (Unified CM) 7.1(x) before 7.1(5b)su6a does not properly handle errors, which allows remote attackers to cause a denial of service (service disruption) via malformed registration messages, aka Bug ID CSCuf93466.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: psirt@cisco.com — http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130821-cucm

Application impact
VendorProductVersionsFixed
ciscounified_communications_manager7.1\(2a\)
ciscounified_communications_manager7.1\(2a\)su1
ciscounified_communications_manager7.1\(2b\)
ciscounified_communications_manager7.1\(2b\)su1
ciscounified_communications_manager7.1\(3\)
ciscounified_communications_manager7.1\(3a\)
ciscounified_communications_manager7.1\(3a\)su1
ciscounified_communications_manager7.1\(3a\)su1a
ciscounified_communications_manager7.1\(3b\)
ciscounified_communications_manager7.1\(3b\)su1
ciscounified_communications_manager7.1\(3b\)su2
ciscounified_communications_manager7.1\(5\)
ciscounified_communications_manager7.1\(5\)su1
ciscounified_communications_manager7.1\(5\)su1a
ciscounified_communications_manager7.1\(5a\)
ciscounified_communications_manager7.1\(5b\)
ciscounified_communications_manager7.1\(5b\)su1
ciscounified_communications_manager7.1\(5b\)su1a
ciscounified_communications_manager7.1\(5b\)su2
ciscounified_communications_manager7.1\(5b\)su3
ciscounified_communications_manager7.1\(5b\)su4
ciscounified_communications_manager7.1\(5b\)su5
ciscounified_communications_manager7.1\(5b\)su6

References

CWEs

CWE-399

Verify integrity in audit chain (admin only). AS-IS.