Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified communications manager 12.0 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2017-3872
A cross-site scripting (XSS) filter bypass vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an unauthenticated, remote malicious user to conduct XSS attacks against a user of an affected device. More Information: CSCvc21620. ...
Cisco Unified Communications Manager 11.0(1.10000.10)
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.14076.1)
Cisco Unified Communications Manager 10.5(2.10000.5)
7.5
CVSSv3
CVE-2019-1887
A vulnerability in the Session Initiation Protocol (SIP) protocol implementation of Cisco Unified Communications Manager could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition. The vulnerability is due to insufficient validation of inpu...
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0(1.10000.10)
Cisco Unified Communications Manager 12.5(1.10000.22)
5.4
CVSSv3
CVE-2018-15403
A vulnerability in the web interface of Cisco Emergency Responder, Cisco Unified Communications Manager, Cisco Unified Communications Manager IM & Presence Service, and Cisco Unity Connection could allow an authenticated, remote malicious user to redirect a user to a maliciou...
Cisco Unified Communications Manager 11.0(1.10000.10)
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0(1.10000.10)
Cisco Unity Connection 9.1(1)es23
Cisco Unified Communications Manager Im And Presence Service 10.5(1)
Cisco Unified Communications Manager Im And Presence Service 10.5(2)
Cisco Unified Communications Manager Im And Presence Service 12.0(1)
Cisco Unified Communications Manager Im And Presence Service 12.5(1)
Cisco Emergency Responder 11.5(4.59000.1)
Cisco Emergency Responder 12.0(1.40000.3)
Cisco Emergency Responder 12.5(0.98000.110)
NA
CVE-2007-4294
Unspecified vulnerability in Cisco Unified Communications Manager (CUCM) 5.0, 5.1, and 6.0, and IOS 12.0 up to and including 12.4, allows remote malicious users to execute arbitrary code via a malformed SIP packet, aka CSCsi80102.
Cisco Unified Communications Manager 5.0
Cisco Unified Communications Manager 5.1
Cisco Unified Communications Manager 6.0
4.9
CVSSv3
CVE-2021-1406
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authenticated, remote malicious user to access sensitive information on an affected device. The vulnerability i...
Cisco Unified Communications Manager 12.5(1)
Cisco Unified Communications Manager 12.0(1)
Cisco Unified Communications Manager 10.5(2)
Cisco Unified Communications Manager 11.5(1)
Cisco Unified Communications Manager 10.5(2)su1
Cisco Unified Communications Manager 10.5(2)su2
Cisco Unified Communications Manager 10.5(2)su2a
Cisco Unified Communications Manager 10.5(2)su3
Cisco Unified Communications Manager 10.5(2)su3a
Cisco Unified Communications Manager 10.5(2)su4
Cisco Unified Communications Manager 10.5(2)su4a
Cisco Unified Communications Manager 10.5(2)su5
Cisco Unified Communications Manager 10.5(2)su6
Cisco Unified Communications Manager 10.5(2)su6a
Cisco Unified Communications Manager 10.5(2)su7
Cisco Unified Communications Manager 10.5(2)su8
Cisco Unified Communications Manager 10.5(2)su9
Cisco Unified Communications Manager 10.5(2)su10
Cisco Unified Communications Manager 12.5(1)su1
Cisco Unified Communications Manager 12.5(1)su2
Cisco Unified Communications Manager 12.5(1)su3
Cisco Unified Communications Manager 12.5(1)su4
7.5
CVSSv3
CVE-2019-1837
A vulnerability in the User Data Services (UDS) API of Cisco Unified Communications Manager (Unified CM) could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on the management GUI. The vulnerability is due to improper validation of in...
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0(1.10000.10)
Cisco Unified Communications Manager 12.5(1.10000.22)
6.1
CVSSv3
CVE-2018-0355
A vulnerability in the web UI of Cisco Unified Communications Manager (Unified CM) could allow an unauthenticated, remote malicious user to conduct a cross-frame scripting (XFS) attack against the user of the web UI of an affected system. The vulnerability is due to insufficient ...
Cisco Unified Communications Manager 11.0(1.10000.10)
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0(1.10000.10)
4.3
CVSSv3
CVE-2018-0266
A vulnerability in the web framework of Cisco Unified Communications Manager could allow an authenticated, remote malicious user to view sensitive data. The vulnerability is due to insufficient protection of database tables over the web interface. An attacker could exploit this v...
Cisco Unified Communications Manager 11.0(1.10000.10)
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0(1.10000.10)
6.5
CVSSv3
CVE-2018-0267
A vulnerability in the web framework of Cisco Unified Communications Manager could allow an authenticated, local malicious user to view sensitive data that should be restricted. This could include LDAP credentials. The vulnerability is due to insufficient protection of database t...
Cisco Unified Communications Manager 11.0(1.10000.10)
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0(1.10000.10)
6.1
CVSSv3
CVE-2018-0411
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device....
Cisco Unified Communications Manager 11.0(1.10000.10)
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0(1.10000.10)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »