Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco virtualized voice browser vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2024-20253
A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an unauthenticated, remote malicious user to execute arbitrary code on an affected device. This vulnerability is due to the improper processing of user-provided data that is...
Cisco Unified Communications Manager
Cisco Unified Communications Manager Im And Presence Service
Cisco Unity Connection
Cisco Unified Contact Center Express 12.5(1)
Cisco Virtualized Voice Browser 12.6(2)
Cisco Virtualized Voice Browser 12.6(1)
Cisco Virtualized Voice Browser 12.5(1)
6.1
CVSSv3
CVE-2021-1575
A vulnerability in the web-based management interface of Cisco Virtualized Voice Browser could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because the web-based managemen...
Cisco Virtualized Voice Browser
6.1
CVSSv3
CVE-2021-1245
Cisco Finesse and Cisco Unified CVP OpenSocial Gadget Editor Cross-Site Scripting Vulnerability A vulnerability in the web-based management interface of Cisco Finesse and Cisco Unified CVP could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XS...
Cisco Finesse 12.0(1)
Cisco Finesse 12.5(1)
Cisco Finesse
6.1
CVSSv3
CVE-2021-1246
Cisco Finesse, Cisco Virtualized Voice Browser, and Cisco Unified CVP OpenSocial Gadget Editor Unauthenticated Access Vulnerability A vulnerability in the web management interface of Cisco Finesse, Cisco Virtualized Voice Browser, and Cisco Unified CVP could allow an unauthentica...
Cisco Finesse 12.0(1)
Cisco Finesse 12.5(1)
Cisco Finesse
8.6
CVSSv3
CVE-2018-0086
A vulnerability in the application server of the Cisco Unified Customer Voice Portal (CVP) could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on the affected device. The vulnerability is due to malformed SIP INVITE traffic received ...
Cisco Unified Customer Voice Portal
7.5
CVSSv3
CVE-2017-6779
Multiple Cisco products are affected by a vulnerability in local file management for certain system log files of Cisco collaboration products that could allow an unauthenticated, remote malicious user to cause high disk utilization, resulting in a denial of service (DoS) conditio...
Cisco Emergency Responder
Cisco Emergency Responder 11.0(1.10000.10)
Cisco Finesse 9.5(1)
Cisco Finesse
Cisco Hosted Collaboration Mediation Fulfillment
Cisco Hosted Collaboration Mediation Fulfillment 9.5(1)
Cisco Mediasense 9.5(1)
Cisco Mediasense
Cisco Prime Collaboration Assurance
Cisco Prime Collaboration Provisioning 12.5
Cisco Prime License Manager
Cisco Socialminer
Cisco Unified Communications Manager 11.0(1.10000.10)
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0
Cisco Unified Communications Manager
Cisco Unified Contact Center Express 9.0(2)su1.3
Cisco Unified Contact Center Express
Cisco Unified Intelligence Center 9.5(1)
Cisco Unified Intelligence Center
Cisco Unity Connection 12.0
8.1
CVSSv3
CVE-2018-11776
Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or...
Apache Struts
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager
Oracle Mysql Enterprise Monitor
Oracle Enterprise Manager Base Platform 13.3.0.0
Oracle Enterprise Manager Base Platform 13.4.0.0
Oracle Communications Policy Management
3 EDB exploits
48 Github repositories
3 Articles
10
CVSSv3
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1208 Github repositories
29 Articles
9.8
CVSSv3
CVE-2017-5638
The Jakarta Multipart parser in Apache Struts 2 2.3.x prior to 2.3.32 and 2.5.x prior to 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote malicious users to execute arbitrary commands via a crafted Content-Typ...
Apache Struts
Ibm Storwize V3500 Firmware 7.7.1.6
Ibm Storwize V3500 Firmware 7.8.1.0
Ibm Storwize V5000 Firmware 7.7.1.6
Ibm Storwize V5000 Firmware 7.8.1.0
Ibm Storwize V7000 Firmware 7.7.1.6
Ibm Storwize V7000 Firmware 7.8.1.0
Lenovo Storage V5030 Firmware 7.7.1.6
Lenovo Storage V5030 Firmware 7.8.1.0
Hp Server Automation 10.0.0
Hp Server Automation 10.1.0
Hp Server Automation 10.2.0
Hp Server Automation 10.5.0
Hp Server Automation 9.1.0
Oracle Weblogic Server 12.1.3.0.0
Oracle Weblogic Server 12.2.1.2.0
Oracle Weblogic Server 10.3.6.0.0
Oracle Weblogic Server 12.2.1.1.0
Arubanetworks Clearpass Policy Manager
Netapp Oncommand Balance -
2 EDB exploits
2 Nmap scripts
153 Github repositories
15 Articles
6.6
CVSSv3
CVE-2021-44832
Apache Log4j2 versions 2.0-beta7 up to and including 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the tar...
Apache Log4j 2.0
Apache Log4j
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Weblogic Server 12.2.1.4.0
Oracle Primavera Unifier 19.12
Oracle Weblogic Server 14.1.1.0.0
Oracle Primavera Unifier 20.12
Oracle Communications Interactive Session Recorder 6.3
Oracle Communications Interactive Session Recorder 6.4
Oracle Primavera Gateway
Oracle Retail Assortment Planning 16.0.3
Oracle Primavera Unifier 21.12
Oracle Primavera P6 Enterprise Project Portfolio Management 21.12.0.0
Oracle Primavera P6 Enterprise Project Portfolio Management
Oracle Primavera Gateway 21.12.0
Oracle Retail Fiscal Management 14.2
Oracle Siebel Ui Framework 21.12
Oracle Communications Diameter Signaling Router
Cisco Cloudcenter 4.10.0.16
Fedoraproject Fedora 34
Fedoraproject Fedora 35
35 Github repositories
4 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38380
wireless
CVE-2024-8190
CVE-2024-45811
unauthorized
CVE-2024-8946
physical
CVE-2024-8503
CVE-2024-47049
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »