CVE-2019-1845: Input Validation
First published: Wed Jun 05 2019(Updated: )
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco TelePresence Video Communication Server | >=x8.1<=x12.5.2 | |
| Cisco Unified Communications Manager IM and Presence Service | =11.5\(1\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-1845?
CVE-2019-1845 is a vulnerability in the authentication service of the Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, Cisco TelePresence Video Communication Server (VCS), and Cisco Expressway Series.
What is the severity of CVE-2019-1845?
The severity of CVE-2019-1845 is rated as high with a severity value of 8.6.
How can an attacker exploit CVE-2019-1845?
An unauthenticated remote attacker can exploit CVE-2019-1845 to cause a service outage for users.
Which software products are affected by CVE-2019-1845?
Cisco TelePresence Video Communication Server and Cisco Unified Communications Manager IM and Presence Service are affected by CVE-2019-1845.
How can I mitigate CVE-2019-1845?
To mitigate CVE-2019-1845, it is recommended to apply the necessary patches or updates provided by Cisco.
- collector/nvd-index
- vendor/cisco
- product/telepresence video communication server
- canonical/cisco telepresence video communication server
- product/unified communications manager im and presence service
- canonical/cisco unified communications manager im and presence service