What is CVE-2020-16138?

CVE-2020-16138 is a vulnerability in N/a. Published 2020-08-12.

Is CVE-2020-16138 known to be exploited?

8 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2020-16138

A denial-of-service issue in Cisco Unified IP Conference Station 7937G 1-4-4-0 through 1-4-5-7 allows attackers to remotely disable the device until it is power cycled. Note: We cannot prove this vulnerability exists. Out of an abundance o…

EPSS: 0.747 (98.9th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework
20142995/nuclei-templates
ARPSyndicate/cve-scores
ARPSyndicate/cvemon
Fans0n-Fan/Cisco-7937G-All-In-One-Exploiter
blacklanternsecurity/Cisco-7937G-PoCs
cyb3r-w0lf/nuclei-template-collection
fkie-cad/nvd-json-data-feeds

References

packetstormsecurity.com/files/158819/Cisco-7937G-Denial-Of-Service.html (x_refsource_MISC)
www.blacklanternsecurity.com/2020-08-07-Cisco-Unified-IP-Conference-Station-793… (x_refsource_MISC)
www.cisco.com/c/en/us/products/collateral/collaboration-endpoints/unified-ip-ph… (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-16138?: CVE-2020-16138 is a vulnerability in N/a. Published 2020-08-12.
Is CVE-2020-16138 known to be exploited?: 8 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.