PT-2015-1638 · Cisco+1 · Cisco Unified Communications Manager+1

Published

2015-07-14

Updated

2016-12-28

CVE-2015-4269

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Cisco Unified Communications Manager version 10.5(1.99995.9)

Description The issue is related to resource management errors in the system. It may allow a remote attacker to cause a denial of service by sending multiple requests.

Recommendations For Cisco Unified Communications Manager version 10.5(1.99995.9), consider restricting access to the Tomcat throttling feature as a temporary workaround until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

BDU:2015-10984

CVE-2015-4269

Affected Products

Cisco Unified Communications Manager

Apache Tomcat

PT-2015-1638 · Cisco+1 · Cisco Unified Communications Manager+1

CVE-2015-4269

Weakness Enumeration

Related Identifiers

Affected Products

References · 4