CVE-2019-12646

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software (affected versions not specified)

Description A vulnerability in the Network Address Translation (NAT) Session Initiation Protocol (SIP) Application Layer Gateway (ALG) could allow an unauthenticated, remote attacker to cause an affected device to reload. The issue is due to improper processing of transient SIP packets on which NAT is performed. An attacker could exploit this by sending crafted SIP packets through an affected device using UDP port 5060. A successful exploit could result in a denial of service (DoS) condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.