Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified communications manager im and presence service - vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-6464
A vulnerability in the web management interface of the Cisco Unified Communications Manager IM and Presence Service could allow an unauthenticated, remote malicious user to view information on web pages that should be restricted. More Information: CSCva49629. Known Affected Relea...
Cisco Unified Communications Manager Im And Presence Service 10.5(1)
Cisco Unified Communications Manager Im And Presence Service 11.5(1)
Cisco Unified Communications Manager Im And Presence Service 10.5(2)
Cisco Unified Communications Manager Im And Presence Service 11.0(1)
NA
CVE-2015-4294
Cross-site scripting (XSS) vulnerability in Cisco IM and Presence Service prior to 10.5 MR1 allows remote malicious users to inject arbitrary web script or HTML by constructing a crafted URL that leverages incomplete filtering of HTML elements, aka Bug ID CSCut41766.
Cisco Unified Communications Manager Im And Presence Service 10.5(1)
Cisco Unified Communications Manager Im And Presence Service 9.1(1)
Cisco Unified Communications Manager Im And Presence Service 9.0(1)
NA
CVE-2014-8000
Cisco Unified Communications Manager IM and Presence Service 9.1(1) produces different returned messages for URL requests depending on whether a username exists, which allows remote malicious users to enumerate user accounts via a series of requests, aka Bug ID CSCur63497.
Cisco Unified Communications Manager Im And Presence Service 9.1(1)
6.1
CVSSv3
CVE-2018-0396
A vulnerability in the web framework of the Cisco Unified Communications Manager IM and Presence Service software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against the user of the web interface of an affected system. The vu...
Cisco Unified Communications Manager Im And Presence Service 12.0
Cisco Unified Communications Manager Im And Presence Service 11.5
NA
CVE-2015-4222
SQL injection vulnerability in Cisco Unified Communications Manager IM and Presence Service 9.1(1) allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuq46325.
Cisco Unified Communications Manager Im And Presence Service 9.1(1)
NA
CVE-2015-4221
Cisco Unified Communications Manager IM and Presence Service 9.1(1) does not properly restrict access to encrypted passwords, which allows remote malicious users to determine cleartext passwords, and consequently execute arbitrary commands, by visiting an unspecified web page and...
Cisco Unified Communications Manager Im And Presence Service 9.1(1)
NA
CVE-2015-6310
The REST interface in Cisco Unified Communications Manager IM and Presence Service 11.5(1) allows remote malicious users to cause a denial of service (SIP proxy service restart) via a crafted HTTP request, aka Bug ID CSCuw31632.
Cisco Unified Communications Manager Im And Presence Service 11.5(1)
6.5
CVSSv3
CVE-2021-34773
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&...
Cisco Unified Communications Manager Im And Presence Service 11.5(1)
Cisco Unified Communications Manager Im And Presence Service 10.5(2)
Cisco Unified Communications Manager -
Cisco Unified Communications Manager 14.0(1.10000.20)
Cisco Unified Communications Manager Im And Presence Service 12.5
Cisco Unified Communications Manager Im And Presence Service 14.0
7.5
CVSSv3
CVE-2016-1466
Cisco Unified Communications Manager IM and Presence Service 9.1(1) SU6, 9.1(1) SU6a, 9.1(1) SU7, 10.5(2) SU2, 10.5(2) SU2a, 11.0(1) SU1, and 11.5(1) allows remote malicious users to cause a denial of service (sipd process restart) via crafted headers in a SIP packet, aka Bug ID ...
Cisco Unified Communications Manager Im And Presence Service 9.1(1)
Cisco Unified Communications Manager Im And Presence Service 11.5(1)
Cisco Unified Communications Manager Im And Presence Service 10.5(2)
Cisco Unified Communications Manager Im And Presence Service 11.0(1)
7.5
CVSSv3
CVE-2023-20108
A vulnerability in the XCP Authentication Service of the Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an unauthenticated, remote malicious user to cause a temporary service outage for all Cisco Unified CM IM&P us...
Cisco Unified Communications Manager Im And Presence Service 12.5(1)
Cisco Unified Communications Manager Im And Presence Service 14su
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »