Unrated severityNVD Advisory· Published May 16, 2008· Updated Apr 23, 2026

CVE-2008-1748

Description

Cisco Unified Communications Manager 4.1 before 4.1(3)SR7, 4.2 before 4.2(3)SR4, 4.3 before 4.3(2), 5.x before 5.1(3), and 6.x before 6.1(1) does not properly validate SIP URLs, which allows remote attackers to cause a denial of service (service interruption) via a SIP INVITE message, aka Bug ID CSCsl22355.

Affected products

Cisco Systems, Inc./Unified Communications Manager
cpe:2.3:a:cisco:unified_communications_manager:*:*:*:*:*:*:*:*
Range: >=4.1,<4.1\(3\)sr7

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/en/US/products/products_security_advisory09186a0080995688.shtmlnvdPatchVendor Advisory
secunia.com/advisories/30238nvdThird Party Advisory
securitytracker.com/idnvdThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/29221nvdThird Party AdvisoryVDB Entry
exchange.xforce.ibmcloud.com/vulnerabilities/42419nvdThird Party AdvisoryVDB Entry
www.vupen.com/english/advisories/2008/1533nvdPermissions Required

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000