Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified communications manager - vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2020-3140
A vulnerability in the web management interface of Cisco Prime License Manager (PLM) Software could allow an unauthenticated, remote malicious user to gain unauthorized access to an affected device. The vulnerability is due to insufficient validation of user input on the web mana...
Cisco Prime License Manager
1 Article
10
CVSSv2
CVE-2020-3161
A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote malicious user to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of prop...
Cisco Ip Phone 8865 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8865 Firmware 11.0\\(1\\)
Cisco Ip Phone 8865 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 8851 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8851 Firmware 11.0\\(1\\)
Cisco Ip Phone 8851 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 7841 Firmware 11.0\\(1\\)
Cisco Ip Phone 7821 Firmware 11.0\\(1\\)
Cisco Ip Phone 8811 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8811 Firmware 11.0\\(1\\)
Cisco Ip Phone 8811 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 8861 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8861 Firmware 11.0\\(1\\)
Cisco Ip Phone 8861 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 8845 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8845 Firmware 11.0\\(1\\)
Cisco Ip Phone 8845 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 7861 Firmware 11.0\\(1\\)
Cisco Ip Phone 8841 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8841 Firmware 11.0\\(1\\)
Cisco Ip Phone 8841 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 7811 Firmware 11.0\\(1\\)
1 Github repository
10
CVSSv2
CVE-2017-12337
A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platform could allow an unauthenticated, remote malicious user to gain unauthorized, elevated access to an affected device. The vulnerability occurs when a ...
Cisco Prime License Manager -
Cisco Unity Connection -
Cisco Emergency Responder -
Cisco Unified Communications Manager Im And Presence Service -
Cisco Unified Communications Manager -
Cisco Finesse -
Cisco Mediasense -
Cisco Socialminer -
Cisco Unified Intelligence Center -
Cisco Hosted Collaboration Solution -
Cisco Unified Contact Center Express -
10
CVSSv2
CVE-2017-5638
The Jakarta Multipart parser in Apache Struts 2 2.3.x prior to 2.3.32 and 2.5.x prior to 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote malicious users to execute arbitrary commands via a crafted Content-Typ...
Apache Struts 2.3.5
Apache Struts 2.3.28
Apache Struts 2.3.20.2
Apache Struts 2.3.15
Apache Struts 2.3.25
Apache Struts 2.3.14
Apache Struts 2.3.13
Apache Struts 2.3.16
Apache Struts 2.3.24.2
Apache Struts 2.3.17
Apache Struts 2.3.24.1
Apache Struts 2.3.22
Apache Struts 2.3.9
Apache Struts 2.3.16.3
Apache Struts 2.3.23
Apache Struts 2.3.6
Apache Struts 2.3.24.3
Apache Struts 2.3.15.2
Apache Struts 2.3.29
Apache Struts 2.3.14.3
Apache Struts 2.3.19
Apache Struts 2.3.20.1
2 EDB exploits
2 Nmap scripts
143 Github repositories
15 Articles
10
CVSSv2
CVE-2014-2198
Cisco Unified Communications Domain Manager (CDM) in Unified CDM Platform Software prior to 4.4.2 has a hardcoded SSH private key, which makes it easier for remote malicious users to obtain access to the support and root accounts by extracting this key from a binary file found in...
Cisco Unified Cdm Platform Software
Cisco Unified Communications Domain Manager -
10
CVSSv2
CVE-2011-3271
Unspecified vulnerability in the Smart Install functionality in Cisco IOS 12.2 and 15.1 allows remote malicious users to execute arbitrary code or cause a denial of service (device crash) via crafted TCP packets to port 4786, aka Bug ID CSCto10165.
Cisco Ios 12.2
Cisco Ios 15.1
10
CVSSv2
CVE-2011-1643
Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x, 7.x prior to 7.1(5b)su4, 8.0, and 8.5 prior to 8.5(1)su2 and Cisco Unified Presence Server 6.x, 7.x, 8.0, and 8.5 prior to 8.5xnr allow remote malicious users to read database data by connecting to a query...
Cisco Unified Communications Manager 6.1\\(3\\)
Cisco Unified Communications Manager 6.1\\(4\\)su1
Cisco Unified Communications Manager 6.1\\(4a\\)su2
Cisco Unified Communications Manager 6.1\\(1\\)
Cisco Unified Communications Manager 7.1\\(5a\\)
Cisco Unified Communications Manager 7.0\\(2\\)
Cisco Unified Communications Manager 7.0\\(1\\)su1
Cisco Unified Communications Manager 7.0\\(2a\\)su1
Cisco Unified Communications Manager 7.0\\(2a\\)su2
Cisco Unified Communications Manager 8.5\\(1\\)su1
Cisco Unified Communications Manager 8.5\\(1\\)
Cisco Unified Communications Manager 6.1\\(5\\)su1
Cisco Unified Communications Manager 6.1\\(5\\)su2
Cisco Unified Communications Manager 6.1\\(1b\\)
Cisco Unified Communications Manager 6.0
Cisco Unified Communications Manager 6.1\\(3b\\)su1
Cisco Unified Communications Manager 6.1\\(4a\\)
Cisco Unified Communications Manager 7.1\\(3\\)
Cisco Unified Communications Manager 7.1\\(5\\)
Cisco Unified Communications Manager 7.1\\(3b\\)su2
Cisco Unified Communications Manager 7.1\\(3b\\)su1
Cisco Unified Communications Manager 7.1\\(2b\\)
10
CVSSv2
CVE-2010-0580
Unspecified vulnerability in the SIP implementation in Cisco IOS 12.3 and 12.4 allows remote malicious users to execute arbitrary code via a malformed SIP message, aka Bug ID CSCsz48680, the "SIP Message Processing Arbitrary Code Execution Vulnerability."
Cisco Ios 12.3xj
Cisco Ios 12.3xk
Cisco Ios 12.3yf
Cisco Ios 12.3yg
Cisco Ios 12.3yx
Cisco Ios 12.3yz
Cisco Ios 12.4t
Cisco Ios 12.4xa
Cisco Ios 12.4yd
Cisco Ios 12.4ye
Cisco Ios 12.3jk
Cisco Ios 12.3t
Cisco Ios 12.3xl
Cisco Ios 12.3xq
Cisco Ios 12.3yk
Cisco Ios 12.3ym
Cisco Ios 12.3za
Cisco Ios 12.4
Cisco Ios 12.4xb
Cisco Ios 12.4xd
Cisco Ios 12.4xp
Cisco Ios 12.4yg
10
CVSSv2
CVE-2010-0581
Unspecified vulnerability in the SIP implementation in Cisco IOS 12.3 and 12.4 allows remote malicious users to execute arbitrary code via a malformed SIP message, aka Bug ID CSCsz89904, the "SIP Packet Parsing Arbitrary Code Execution Vulnerability."
Cisco Ios 12.3t
Cisco Ios 12.3xd
Cisco Ios 12.3xr
Cisco Ios 12.3xu
Cisco Ios 12.3ym
Cisco Ios 12.3yq
Cisco Ios 12.3jk
Cisco Ios 12.4
Cisco Ios 12.4xd
Cisco Ios 12.4xp
Cisco Ios 12.4yg
Cisco Ios 12.3xz
Cisco Ios 12.3xi
Cisco Ios 12.3xj
Cisco Ios 12.3xk
Cisco Ios 12.3xy
Cisco Ios 12.3yf
Cisco Ios 12.3yu
Cisco Ios 12.3yx
Cisco Ios 12.4mda
Cisco Ios 12.4mr
Cisco Ios 12.4t
10
CVSSv2
CVE-2008-1154
The Disaster Recovery Framework (DRF) master server in Cisco Unified Communications products, including Unified Communications Manager (CUCM) 5.x and 6.x, Unified Presence 1.x and 6.x, Emergency Responder 2.x, and Mobility Manager 2.x, does not require authentication for requests...
Cisco Unified Presence 1.0
Cisco Unified Presence 6.0
Cisco Mobility Manager 2.0
Cisco Unified Communications Manager 5.0
Cisco Unified Communications Manager 5.1
Cisco Emergency Responder 2.0
Cisco Unified Communications Manager 6.0
Cisco Unified Communications Manager 6.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »