Unrated severityNVD Advisory· Published Aug 12, 2014· Updated May 6, 2026

CVE-2014-3337

Description

The SIP implementation in Cisco Unified Communications Manager (CM) 8.6(.2) and earlier allows remote authenticated users to cause a denial of service (process crash) via a crafted SIP message that is not properly handled during processing of an XML document, aka Bug ID CSCtq76428.

Affected products

Cisco Systems, Inc./Unified Communications Domain Manager
cpe:2.3:a:cisco:unified_communications_domain_manager:*:*:*:*:*:*:*:*
Range: <=8.6\(.2\)

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3337nvdVendor Advisory
tools.cisco.com/security/center/viewAlert.xnvdVendor Advisory
secunia.com/advisories/60088nvd
www.securityfocus.com/bid/69177nvd
www.securitytracker.com/id/1030709nvd
exchange.xforce.ibmcloud.com/vulnerabilities/95245nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000