CVE-2021-40122
21.10.2021, 03:15
A vulnerability in an API of the Call Bridge feature of Cisco Meeting Server could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due to improper handling of large series of message requests. An attacker could exploit this vulnerability by sending a series of messages to the vulnerable API. A successful exploit could allow the attacker to cause the affected device to reload, dropping all ongoing calls and resulting in a DoS condition.Enginsight
Vendor | Product | Version |
---|---|---|
cisco | meeting_server | 𝑥 ≤ 3.1 |
cisco | meeting_server | 3.2 ≤ 𝑥 < 3.2.3 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration