Sign-up

ID

VAR-201403-0468


CVE

CVE-2014-2122


TITLE

Cisco Hosted Collaboration Solution of Impact Server GUI Service disruption in (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2014-001743

DESCRIPTION

Memory leak in the GUI in the Impact server in Cisco Hosted Collaboration Solution (HCS) allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors, aka Bug ID CSCub58999. Vendors have confirmed this vulnerability Bug ID CSCub58999 It is released as.Service disruption by a third party ( Memory consumption ) There is a possibility of being put into a state. Cisco Hosted Collaboration Solution is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause the application to hang intermittently, which leads to denial-of-service conditions. This issue is being tracked by Cisco Bug ID CSCub58999. The solution includes products such as Cisco TelePresence, Customer Collaboration (Contact Center) and Unified Communications to support customers to use collaboration technology in public cloud, private cloud and hybrid cloud models

Trust: 1.98

sources: NVD: CVE-2014-2122 // JVNDB: JVNDB-2014-001743 // BID: 66293 // VULHUB: VHN-70061

AFFECTED PRODUCTS

vendor:ciscomodel:hosted collaboration solutionscope:eqversion: -

Trust: 1.6

vendor:ciscomodel:hosted collaboration solutionscope:eqversion:9.0(1)

Trust: 0.8

vendor:ciscomodel:hosted collaboration solutionscope:eqversion:0

Trust: 0.3

sources: BID: 66293 // JVNDB: JVNDB-2014-001743 // CNNVD: CNNVD-201403-350 // NVD: CVE-2014-2122

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2014-2122
value: MEDIUM

Trust: 1.0

NVD: CVE-2014-2122
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201403-350
value: MEDIUM

Trust: 0.6

VULHUB: VHN-70061
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2014-2122
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-70061
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-70061 // JVNDB: JVNDB-2014-001743 // CNNVD: CNNVD-201403-350 // NVD: CVE-2014-2122

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.9

sources: VULHUB: VHN-70061 // JVNDB: JVNDB-2014-001743 // NVD: CVE-2014-2122

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201403-350

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-201403-350

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2014-001743

PATCH
title:Cisco Hosted Collaboration Solution Memory Leak Vulnerabilityurl:http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2122
Trust: 0.8
title:33407url:http://tools.cisco.com/security/center/viewAlert.x?alertId=33407
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2014-001743

EXTERNAL IDS
db:NVDid:CVE-2014-2122
Trust: 2.8
db:BIDid:66293
Trust: 1.4
db:SECTRACKid:1029936
Trust: 1.1
db:JVNDBid:JVNDB-2014-001743
Trust: 0.8
db:CNNVDid:CNNVD-201403-350
Trust: 0.7
db:CISCOid:20140318 CISCO HOSTED COLLABORATION SOLUTION MEMORY LEAK VULNERABILITY
Trust: 0.6
db:SEEBUGid:SSVID-61872
Trust: 0.1
db:VULHUBid:VHN-70061
Trust: 0.1
sources:
            
            
            VULHUB: VHN-70061 // 
            
            
            
            BID: 66293 // 
            
            
            
            JVNDB: JVNDB-2014-001743 // 
            
            
            
            CNNVD: CNNVD-201403-350 // 
            
            
            
            NVD: CVE-2014-2122

REFERENCES
url:http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2014-2122
Trust: 2.0
url:http://www.securityfocus.com/bid/66293
Trust: 1.1
url:http://www.securitytracker.com/id/1029936
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/91907
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-2122
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-2122
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-70061 // 
            
            
            
            BID: 66293 // 
            
            
            
            JVNDB: JVNDB-2014-001743 // 
            
            
            
            CNNVD: CNNVD-201403-350 // 
            
            
            
            NVD: CVE-2014-2122

CREDITS
Cisco
Trust: 0.3
sources:
            
            
            BID: 66293

SOURCES
db:VULHUBid:VHN-70061
db:BIDid:66293
db:JVNDBid:JVNDB-2014-001743
db:CNNVDid:CNNVD-201403-350
db:NVDid:CVE-2014-2122

LAST UPDATE DATE
2025-04-13T23:39:11.756000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-70061date:2017-08-29T00:00:00
db:BIDid:66293date:2014-03-18T00:00:00
db:JVNDBid:JVNDB-2014-001743date:2014-03-20T00:00:00
db:CNNVDid:CNNVD-201403-350date:2014-03-21T00:00:00
db:NVDid:CVE-2014-2122date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:VULHUBid:VHN-70061date:2014-03-19T00:00:00
db:BIDid:66293date:2014-03-18T00:00:00
db:JVNDBid:JVNDB-2014-001743date:2014-03-20T00:00:00
db:CNNVDid:CNNVD-201403-350date:2014-03-20T00:00:00
db:NVDid:CVE-2014-2122date:2014-03-19T01:15:04.053