Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cisco unified communications manager im and presence service vulnerabilities and exploits

(subscribe to this query)

7.5
CVSSv3
CVE-2016-6464
A vulnerability in the web management interface of the Cisco Unified Communications Manager IM and Presence Service could allow an unauthenticated, remote attacker to view information on web pages that should be restricted. More Information: CSCva49629. Known Affected Releases:...
Cisco Unified Communications Manager Im And Presence Service 10.5\\(1\\)Cisco Unified Communications Manager Im And Presence Service 11.0\\(1\\)Cisco Unified Communications Manager Im And Presence Service 11.5\\(1\\)Cisco Unified Communications Manager Im And Presence Service 10.5\\(2\\)
7.5
CVSSv3
CVE-2016-1466
Cisco Unified Communications Manager IM and Presence Service 9.1(1) SU6, 9.1(1) SU6a, 9.1(1) SU7, 10.5(2) SU2, 10.5(2) SU2a, 11.0(1) SU1, and 11.5(1) allows remote attackers to cause a denial of service (sipd process restart) via crafted headers in a SIP packet, aka Bug ID...
Cisco Unified Communications Manager Im And Presence Service 11.0\\(1\\)Cisco Unified Communications Manager Im And Presence Service 10.5\\(2\\)Cisco Unified Communications Manager Im And Presence Service 11.5\\(1\\)Cisco Unified Communications Manager Im And Presence Service 9.1\\(1\\)
NA
CVE-2015-4294
Cross-site scripting (XSS) vulnerability in Cisco IM and Presence Service before 10.5 MR1 allows remote attackers to inject arbitrary web script or HTML by constructing a crafted URL that leverages incomplete filtering of HTML elements, aka Bug ID CSCut41766....
Cisco Unified Communications Manager Im And Presence Service 9.0\\(1\\)Cisco Unified Communications Manager Im And Presence Service 9.1\\(1\\)Cisco Unified Communications Manager Im And Presence Service 10.5\\(1\\)
6.5
CVSSv3
CVE-2021-34773
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unified Communications Manager IM & Presence Service (Unified CM...
Cisco Unified Communications Manager -Cisco Unified Communications Manager 14.0\\(1.10000.20\\)Cisco Unified Communications Manager Im And Presence Service 10.5\\(2\\)Cisco Unified Communications Manager Im And Presence Service 11.5\\(1\\)Cisco Unified Communications Manager Im And Presence Service 12.5Cisco Unified Communications Manager Im And Presence Service 14.0
6.1
CVSSv3
CVE-2018-0396
A vulnerability in the web framework of the Cisco Unified Communications Manager IM and Presence Service software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web interface of an affected system. The...
Cisco Unified Communications Manager Im And Presence Service 12.0Cisco Unified Communications Manager Im And Presence Service 11.5
8.1
CVSSv3
CVE-2022-20786
A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due...
Cisco Unified Communications Manager Im And Presence Service
NA
CVE-2014-8000
Cisco Unified Communications Manager IM and Presence Service 9.1(1) produces different returned messages for URL requests depending on whether a username exists, which allows remote attackers to enumerate user accounts via a series of requests, aka Bug ID CSCur63497....
Cisco Unified Communications Manager Im And Presence Service 9.1\\(1\\)
6.5
CVSSv3
CVE-2020-27121
A vulnerability in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) Software could allow an authenticated, remote attacker to cause the Cisco XCP Authentication Service on an affected device to restart, resulting in a denial of service...
Cisco Unified Communications Manager Im And Presence Service 12.5\\(1\\)
NA
CVE-2015-6310
The REST interface in Cisco Unified Communications Manager IM and Presence Service 11.5(1) allows remote attackers to cause a denial of service (SIP proxy service restart) via a crafted HTTP request, aka Bug ID CSCuw31632....
Cisco Unified Communications Manager Im And Presence Service 11.5\\(1\\)
NA
CVE-2015-4222
SQL injection vulnerability in Cisco Unified Communications Manager IM and Presence Service 9.1(1) allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuq46325....
Cisco Unified Communications Manager Im And Presence Service 9.1\\(1\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
elevation of privilegeCVE-2022-42331CVE-2023-24709CVE-2023-27569open redirectinjectionCVE-2023-27087
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook