Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog Docs About Contact
7.5
CVSSv3

CVE-2025-20165

CVSSv4: NA | CVSSv3: 7.5 | CVSSv2: NA | VMScore: 850 | EPSS: 0.0025 | KEV: Not Included
Published: 22/01/2025 Updated: 18/02/2025

Vulnerability Summary

Denial of Service Vulnerability in Cisco BroadWorks SIP Processing

A vulnerability exists in the SIP processing subsystem of Cisco BroadWorks. It could let an unauthenticated, remote attacker stop the processing of incoming SIP requests. This results in a denial of service (DoS) condition. The problem comes from improper memory handling for some SIP requests. An attacker might exploit this by sending many SIP requests to the affected system. If successful, this exploit could use up all the memory assigned to Cisco BroadWorks Network Servers handling SIP traffic. When memory runs out, the servers cannot process incoming requests, causing a DoS condition that needs manual intervention to fix.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cisco cisco broadworks

Recent Articles

Cisco warns of denial of service flaw with PoC exploit code
BleepingComputer • Sergiu Gatlan • 22 Jan 2025

Cisco warns of denial of service flaw with PoC exploit code By Sergiu Gatlan January 22, 2025 01:47 PM 0 Cisco has released security updates to patch a ClamAV denial-of-service (DoS) vulnerability, which has proof-of-concept (PoC) exploit code. Tracked as CVE-2025-20128, the vulnerability is caused by a heap-based buffer overflow weakness in the Object Linking and Embedding 2 (OLE2) decryption routine, allowing unauthenticated, remote attackers to trigger a DoS condition on vulnerable devices. I...

Read more...

References

CWE-789https://nvd.nist.govhttps://www.bleepingcomputer.com/news/security/cisco-warns-of-denial-of-service-flaw-with-poc-exploit-code/https://www.first.org/epsshttps://blog.clamav.net/2025/01/clamav-142-and-108-security-patch.htmlhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-sip-dos-mSySbrmthttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-ole2-H549rphA
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
my erpmemory leakCVE-2022-50218CVE-2025-2783local usersjqlangCVE-2023-0386CVE-2024-54183brocadeCVE-2025-23121firewallwebmethodsCVE-2025-48886
Home
/
Search Results
/
CVE-2025-20165
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook