Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco security manager 4.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-3266
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Security Manager 4.6 and previous versions allows remote malicious users to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun65189.
Cisco Security Manager
Cisco Security Manager 4.5
Cisco Security Manager 4.0.1
Cisco Security Manager 4.0
Cisco Security Manager 4.3
Cisco Security Manager 4.2
Cisco Security Manager 4.4
Cisco Security Manager 4.1
6.8
CVSSv2
CVE-2014-3267
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Security Manager 4.6 and previous versions allows remote malicious users to hijack the authentication of arbitrary users for requests that make unspecified changes, aka Bug ID CSCuo46427.
Cisco Security Manager 4.4
Cisco Security Manager 4.3
Cisco Security Manager 4.5
Cisco Security Manager 4.2
Cisco Security Manager 4.1
Cisco Security Manager 4.0.1
Cisco Security Manager 4.0
Cisco Security Manager
4.3
CVSSv2
CVE-2014-2138
CRLF injection vulnerability in the web framework in Cisco Security Manager 4.2 and previous versions allows remote malicious users to inject arbitrary HTTP headers and conduct redirection attacks via a crafted URL, aka Bug ID CSCun82349.
Cisco Security Manager 3.1.1
Cisco Security Manager 3.1
Cisco Security Manager 3.0.2
Cisco Security Manager 3.3.1
Cisco Security Manager 3.3
Cisco Security Manager 3.2.1
Cisco Security Manager 3.2
Cisco Security Manager 4.1
Cisco Security Manager 4.0.1
Cisco Security Manager 4.0
Cisco Security Manager 3.2.2
Cisco Security Manager
4.3
CVSSv2
CVE-2006-3109
Cross-site scripting (XSS) vulnerability in Cisco CallManager 3.3 prior to 3.3(5)SR3, 4.1 prior to 4.1(3)SR4, 4.2 prior to 4.2(3), and 4.3 prior to 4.3(1), allows remote malicious users to inject arbitrary web script or HTML via the (1) pattern parameter in ccmadmin/phonelist.asp...
Cisco Call Manager 3.3\\(4\\)es25
Cisco Call Manager 3.3\\(5\\)
Cisco Call Manager 3.3\\(5\\)es30
Cisco Call Manager 4.1\\(3\\)es32
Cisco Call Manager 3.3
Cisco Call Manager 4.1
Cisco Call Manager 4.1\\(2\\)es33
Cisco Call Manager 4.2
Cisco Call Manager 4.2\\(1\\)
Cisco Call Manager 3.3\\(5\\)sr1
Cisco Call Manager 3.3\\(5\\)sr2
Cisco Call Manager 4.1\\(3\\)sr2
Cisco Call Manager 4.1\\(3\\)sr3
Cisco Call Manager 4.1\\(3\\)sr1
Cisco Call Manager 4.3\\(1\\)
Cisco Call Manager 3.3\\(3\\)
Cisco Call Manager 3.3\\(3\\)es61
Cisco Call Manager 4.1\\(2\\)es55
Cisco Call Manager 4.1\\(3\\)es07
Cisco Call Manager 4.2\\(2\\)
Cisco Call Manager 4.3
2 EDB exploits
7.8
CVSSv2
CVE-2006-0368
Cisco CallManager 3.2 and previous versions, 3.3 prior to 3.3(5)SR1, 4.0 prior to 4.0(2a)SR2c, and 4.1 prior to 4.1(3)SR2 allow remote malicious users to (1) cause a denial of service (CPU and memory consumption) via a large number of open TCP connections to port 2000 and (2) cau...
Cisco Call Manager
Cisco Call Manager 3.2
Cisco Call Manager 3.3
Cisco Call Manager 3.3\\(3\\)
Cisco Call Manager 4.0\\(2a\\)es62
Cisco Call Manager 4.0\\(2a\\)sr2b
Cisco Call Manager 3.1\\(2\\)
Cisco Call Manager 3.1\\(3a\\)
Cisco Call Manager 4.0
Cisco Call Manager 4.0\\(2a\\)es40
Cisco Call Manager 4.1\\(3\\)sr1
Cisco Call Manager 3.0
Cisco Call Manager 3.1
Cisco Call Manager 3.3\\(5\\)
Cisco Call Manager 3.3\\(5\\)es30
Cisco Call Manager 4.1\\(3\\)es07
Cisco Call Manager 4.1\\(3\\)es32
Cisco Call Manager 1.0
Cisco Call Manager 2.0
Cisco Call Manager 3.3\\(3\\)es61
Cisco Call Manager 3.3\\(4\\)es25
Cisco Call Manager 4.1\\(2\\)es33
5
CVSSv2
CVE-2014-0743
The Certificate Authority Proxy Function (CAPF) component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows remote malicious users to bypass authentication and modify registered-device information via crafted data, aka Bug ID CSCum95468.
Cisco Unified Communications Manager 4.1\\(3\\)sr3
Cisco Unified Communications Manager 4.1\\(3\\)sr4
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager
Cisco Unified Communications Manager 3.3\\(5\\)
Cisco Unified Communications Manager 3.3\\(5\\)sr1
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.1\\(3\\)
Cisco Unified Communications Manager 4.1\\(3\\)sr2
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Unified Communications Manager 3.3\\(5\\)sr2a
Cisco Unified Communications Manager 4.1\\(3\\)sr1
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.2.3sr2
5
CVSSv2
CVE-2014-0733
The Enterprise License Manager (ELM) component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions does not properly enforce authentication requirements, which allows remote malicious users to read ELM files via a direct request to a URL, aka Bug ID...
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager
Cisco Unified Communications Manager 4.1\\(3\\)sr3
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 3.3\\(5\\)
Cisco Unified Communications Manager 3.3\\(5\\)sr1
Cisco Unified Communications Manager 3.3\\(5\\)sr2a
Cisco Unified Communications Manager 4.1\\(3\\)
Cisco Unified Communications Manager 4.1\\(3\\)sr1
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager 4.1\\(3\\)sr2
Cisco Unified Communications Manager 4.1\\(3\\)sr4
Cisco Unified Communications Manager 4.2.3sr2b
5
CVSSv2
CVE-2014-0731
The administration interface in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows remote malicious users to bypass authentication and read Java class files via a direct request, aka Bug ID CSCum46497.
Cisco Unified Communications Manager 3.3\\(5\\)sr2a
Cisco Unified Communications Manager 4.1\\(3\\)sr1
Cisco Unified Communications Manager 4.1\\(3\\)sr3
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 4.1\\(3\\)sr4
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager
Cisco Unified Communications Manager 3.3\\(5\\)
Cisco Unified Communications Manager 3.3\\(5\\)sr1
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.1\\(3\\)
Cisco Unified Communications Manager 4.1\\(3\\)sr2
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 4.2.3sr2b
6.8
CVSSv2
CVE-2014-0747
The Certificate Authority Proxy Function (CAPF) CLI implementation in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows local users to inject commands via unspecified CAPF programs, aka Bug ID CSCum95493.
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 3.3\\(5\\)sr1
Cisco Unified Communications Manager 3.3\\(5\\)sr2a
Cisco Unified Communications Manager 4.1\\(3\\)
Cisco Unified Communications Manager 4.1\\(3\\)sr1
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager 3.3\\(5\\)
Cisco Unified Communications Manager 4.1\\(3\\)sr2
Cisco Unified Communications Manager 4.1\\(3\\)sr4
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Unified Communications Manager
Cisco Unified Communications Manager 4.1\\(3\\)sr3
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 4.3
6.2
CVSSv2
CVE-2014-0742
The Certificate Authority Proxy Function (CAPF) CLI implementation in the CSR management feature in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464.
Cisco Unified Communications Manager 4.1\\(3\\)sr2
Cisco Unified Communications Manager 4.1\\(3\\)sr3
Cisco Unified Communications Manager 4.1\\(3\\)sr4
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager
Cisco Unified Communications Manager 3.3\\(5\\)
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 3.3\\(5\\)sr2a
Cisco Unified Communications Manager 4.1\\(3\\)sr1
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 3.3\\(5\\)sr1
Cisco Unified Communications Manager 4.1\\(3\\)
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 4.2.3sr1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »