CVE-2011-4019

medium Cisco
CVSS v3 Base Score
5.4
AV:N/AC:H/Au:N/C:N/I:N/A:C
EPSS Score
0.4%
Exploitation probability in 30 days
Top 38% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
High
Confidentiality
None
Integrity
None
Availability
C
Published: May 3, 2012 (5124 days ago)
Last Modified: April 29, 2026
Vendor: Cisco
Source: NVD

Description

Memory leak in Cisco IOS 12.4 and 15.0 through 15.2, and Cisco Unified Communications Manager (CUCM) 7.x, allows remote attackers to cause a denial of service (memory consumption) via a crafted response to a SIP SUBSCRIBE message, aka Bug IDs CSCto93837 and CSCtj61883.

CWE

CWE-399

Affected Products

cisco ioscisco unified communications manager

References

🔗 www.cisco.com 🔗 www.cisco.com 🔗 www.cisco.com 🔗 www.cisco.com