CVE-2021-34758

A vulnerability in the memory management of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an authenticated, local attacker to corrupt a shared memory segment, resulting in a denial of service (DoS) condition. This vulnerability is due to insufficient access controls to a shared memory resource. An attacker could exploit this vulnerability by corrupting a shared memory segment on an affected device. A successful exploit could allow the attacker to cause the device to reload. The device will recover from the corruption upon reboot.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:cisco:telepresence_collaboration_endpoint:*:*:*:*:*:*:*:*
cpe:2.3:o:cisco:roomos:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-10-06 20:15

Updated : 2024-02-28 18:48


NVD link : CVE-2021-34758

Mitre link : CVE-2021-34758

CVE.ORG link : CVE-2021-34758


JSON object : View

Products Affected

cisco

  • roomos
  • telepresence_collaboration_endpoint
CWE
CWE-732

Incorrect Permission Assignment for Critical Resource