Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco packaged contact center enterprise vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2018-0444
A vulnerability in the web-based management interface of Cisco Packaged Contact Center Enterprise could allow an unauthenticated, remote malicious user to conduct a stored XSS attack against a user of the interface. The vulnerability is due to insufficient validation of user-supp...
Cisco Packaged Contact Center Enterprise 11.6\\(1\\)
6.8
CVSSv2
CVE-2018-0445
A vulnerability in the web-based management interface of Cisco Packaged Contact Center Enterprise could allow an unauthenticated, remote malicious user to conduct a CSRF attack and perform arbitrary actions on an affected device. The vulnerability is due to insufficient CSRF prot...
Cisco Packaged Contact Center Enterprise 11.6\\(1\\)
4.3
CVSSv2
CVE-2021-1395
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because the web-based managem...
Cisco Unified Contact Center Enterprise -
Cisco Packaged Contact Center Enterprise -
Cisco Unified Intelligence Center
Cisco Unified Contact Center Express
Cisco Unified Intelligence Center 12.5\\(1\\)
NA
CVE-2023-20061
Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote malicious user to collect sensitive information or perform a server-side request forgery (SSRF) attack on an affected system. Cisco plans to release software updates that address th...
Cisco Unified Contact Center Express -
Cisco Unified Intelligence Center
Cisco Packaged Contact Center Enterprise -
Cisco Unified Contact Center Enterprise -
NA
CVE-2023-20062
Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote malicious user to collect sensitive information or perform a server-side request forgery (SSRF) attack on an affected system. Cisco plans to release software updates that address th...
Cisco Unified Contact Center Express -
Cisco Unified Intelligence Center
Cisco Packaged Contact Center Enterprise -
Cisco Unified Contact Center Enterprise -
NA
CVE-2023-20058
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because the web-bas...
Cisco Unified Contact Center Express
Cisco Unified Contact Center Enterprise
Cisco Packaged Contact Center Enterprise
Cisco Unified Intelligence Center
4.3
CVSSv2
CVE-2021-1254
Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. These vulnerabilities are due to insufficient validation of user-sup...
Cisco Finesse
5.8
CVSSv2
CVE-2021-1358
A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote malicious user to redirect a user to an undesired web page. This vulnerability is due to improper input validation of the URL parameters in an HTTP request that is sent t...
Cisco Finesse
NA
CVE-2023-20088
A vulnerability in the nginx configurations that are provided as part of the VPN-less reverse proxy for Cisco Finesse could allow an unauthenticated, remote malicious user to create a denial of service (DoS) condition for new and existing users who are connected through a load ba...
Cisco Finesse
Cisco Finesse 12.6\\(1\\)
9.3
CVSSv2
CVE-2013-2251
Apache Struts 2.0.0 up to and including 2.3.15 allows remote malicious users to execute arbitrary OGNL expressions via a parameter with a crafted (1) action:, (2) redirect:, or (3) redirectAction: prefix.
Apache Struts 2.2.3.1
Apache Struts 2.3.4
Apache Struts 2.3.14.1
Apache Struts 2.0.8
Apache Struts 2.1.2
Apache Struts 2.0.14
Apache Struts 2.1.8.1
Apache Struts 2.2.1.1
Apache Struts 2.0.1
Apache Struts 2.0.3
Apache Struts 2.3.12
Apache Struts 2.3.1.2
Apache Struts 2.0.11.1
Apache Struts 2.3.14.3
Apache Struts 2.3.15
Apache Struts 2.2.1
Apache Struts 2.1.3
Apache Struts 2.1.0
Apache Struts 2.1.8
Apache Struts 2.0.0
Apache Struts 2.3.1
Apache Struts 2.3.7
1 EDB exploit
4 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »