cisco-sa-20180516-socmin-dos

Cisco SocialMiner Notification System Denial of Service Vulnerability

cisco-sa-20180516-socmin-dos · Medium · Published 8 years ago · Updated 8 years ago

A vulnerability in the TCP stack of Cisco SocialMiner could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition in the notification system. The vulnerability is due to faulty handling of new TCP connections to the affected application. An attacker could exploit this vulnerability by sending a malicious TCP packet to the vulnerable service. An exploit could allow the attacker to create a DoS condition by interrupting certain phone services. A manual restart of the service may be required to restore full functionalities. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180516-socmin-dos

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEs	CVE-2018-0290
Cisco Bug IDs	CSCvh48368
CVSS Score	Base 5.3 Base 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:X/RL:X/RC:X
Product Names From Source	Cisco SocialMiner

Related Products

Product	CVE	Evidence
Cisco SocialMiner	CVE-2018-0290	Cisco OpenVuln

Vulnslist

find the latest Cisco vulnerabilities

Cisco SocialMiner Notification System Denial of Service Vulnerability

Workarounds

Related Products