Cisco Unified CM IM&P: Remote DoS via XCP Auth Service Input Validation
CVE-2023-20108 Published on June 28, 2023
A vulnerability in the XCP Authentication Service of the Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an unauthenticated, remote attacker to cause a temporary service outage for all Cisco Unified CM IM&P users who are attempting to authenticate to the service, resulting in a denial of service (DoS) condition. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted login message to the affected device. A successful exploit could allow the attacker to cause an unexpected restart of the authentication service, preventing new users from successfully authenticating. Exploitation of this vulnerability does not impact Cisco Unified CM IM&P users who were authenticated prior to an attack.
Vulnerability Analysis
CVE-2023-20108 is exploitable with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.
Weakness Type
What is a Stack Exhaustion Vulnerability?
The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing arbitrary amounts of memory to be allocated.
CVE-2023-20108 has been classified to as a Stack Exhaustion vulnerability or weakness.
Products Associated with CVE-2023-20108
Want to know whenever a new CVE is published for Cisco Unified Communications Manager Im Presence Service? stack.watch will email you.
Affected Versions
Cisco Unified Communications Manager IM and Presence Service:- Version 10.5(1) is affected.
- Version 10.5(2) is affected.
- Version 10.5(2a) is affected.
- Version 10.5(2b) is affected.
- Version 10.5(2)SU3 is affected.
- Version 10.5(2)SU2a is affected.
- Version 10.5(2)SU4a is affected.
- Version 10.5(2)SU4 is affected.
- Version 10.5(1)SU3 is affected.
- Version 10.5(1)SU1 is affected.
- Version 10.5(2)SU1 is affected.
- Version 10.5(2)SU2 is affected.
- Version 10.5(1)SU2 is affected.
- Version 11.5(1) is affected.
- Version 11.5(1)SU1 is affected.
- Version 11.5(1)SU2 is affected.
- Version 11.5(1)SU3 is affected.
- Version 11.5(1)SU3a is affected.
- Version 11.5(1)SU4 is affected.
- Version 11.5(1)SU5 is affected.
- Version 11.5(1)SU5a is affected.
- Version 11.5(1)SU6 is affected.
- Version 11.5(1)SU7 is affected.
- Version 11.5(1)SU8 is affected.
- Version 11.5(1)SU9 is affected.
- Version 11.5(1)SU10 is affected.
- Version 11.5(1)SU11 is affected.
- Version 11.0(1) is affected.
- Version 11.0(1)SU1 is affected.
- Version 12.5(1) is affected.
- Version 12.5(1)SU1 is affected.
- Version 12.5(1)SU2 is affected.
- Version 12.5(1)SU3 is affected.
- Version 12.5(1)SU4 is affected.
- Version 12.5(1)SU5 is affected.
- Version 12.5(1)SU6 is affected.
- Version 14 is affected.
- Version 14SU1 is affected.
- Version 14SU2 is affected.
- Version 14SU2a is affected.
- Version 10.0(1) is affected.
- Version 10.0(1)SU1 is affected.
- Version 10.0(1)SU2 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.