Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unity connection - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-2125
Cross-site scripting (XSS) vulnerability in the Web Inbox in Cisco Unity Connection 8.6(2a)SU3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCui33028.
Cisco Unity Connection 8.6(2a)
Cisco Unity Connection 8.6
Cisco Unity Connection 8.6(1a)
Cisco Unity Connection
NA
CVE-2014-0664
The server in Cisco Unity Connection allows remote authenticated users to cause a denial of service (CPU consumption) via unspecified IMAP commands, aka Bug ID CSCul49976.
Cisco Unity Connection -
NA
CVE-2013-5534
Directory traversal vulnerability in the attachment service in the Voice Message Web Service (aka VMWS or Cisco Unity Web Service) in Cisco Unity Connection allows remote authenticated users to create files, and consequently execute arbitrary JSP code, via a crafted pathname for ...
Cisco Unity Connection -
NA
CVE-2013-1129
Memory leak in Cisco Unity Connection 9.x allows remote malicious users to cause a denial of service (memory consumption and process crash) by sending many TCP requests, aka Bug ID CSCud59736.
Cisco Unity Connection 9.0
Cisco Unity Connection 9.5
Cisco Unity Connection 9.1
Cisco Unity Connection 9.1.1
NA
CVE-2012-3060
Cisco Unity Connection (UC) 8.6, 9.0, and 9.5 allows remote malicious users to cause a denial of service (CPU consumption) via malformed UDP packets, aka Bug ID CSCtz76269.
Cisco Unity Connection 8.6
Cisco Unity Connection 9.0
Cisco Unity Connection 9.5
NA
CVE-2012-3096
Cisco Unity Connection (UC) 7.1, 8.0, and 8.5 allows remote authenticated users to cause a denial of service (resource consumption and administration outage) via extended use of the product, aka Bug ID CSCtd79132.
Cisco Unity Connection 8.0
Cisco Unity Connection 7.1
Cisco Unity Connection 8.5
NA
CVE-2012-0366
Cisco Unity Connection prior to 7.1.3b(Su2) allows remote authenticated users to change the administrative password by leveraging the Help Desk Administrator role, aka Bug ID CSCtd45141.
Cisco Unity Connection 2.1
Cisco Unity Connection 7.0(2a)su2
Cisco Unity Connection 7.1(3b)
Cisco Unity Connection 7.1(5a)
Cisco Unity Connection 7.1(2)
Cisco Unity Connection 1.2
Cisco Unity Connection 2.1(4)su1
Cisco Unity Connection 7.0(2)
Cisco Unity Connection 7.1(5b)su2
Cisco Unity Connection 6.1(3b)su1
Cisco Unity Connection
Cisco Unity Connection 1.1(1) Sr1
Cisco Unity Connection 7.1(5b)su4
Cisco Unity Connection 7.1(3a)su1
Cisco Unity Connection 7.1
Cisco Unity Connection 7.0(2a)su3
Cisco Unity Connection 2.1(4a)su2
Cisco Unity Connection 1.1
Cisco Unity Connection 1.2(1) Es65
Cisco Unity Connection 1.2(1)
Cisco Unity Connection 1.1(1) Es1
Cisco Unity Connection 2.1(5)su3
NA
CVE-2012-0367
Cisco Unity Connection prior to 7.1.5b(Su5), 8.0 and 8.5 prior to 8.5.1(Su3), and 8.6 prior to 8.6.2 allows remote malicious users to cause a denial of service (services crash) via a series of crafted TCP segments, aka Bug ID CSCtq67899.
Cisco Unity Connection 2.1
Cisco Unity Connection 7.0(2a)su2
Cisco Unity Connection 7.1(3b)
Cisco Unity Connection 8.0
Cisco Unity Connection 7.1(5a)
Cisco Unity Connection 7.1(2)
Cisco Unity Connection 1.2
Cisco Unity Connection 8.6
Cisco Unity Connection 2.1(4)su1
Cisco Unity Connection 7.0(2)
Cisco Unity Connection 7.1(5b)su2
Cisco Unity Connection 6.1(3b)su1
Cisco Unity Connection 1.1(1) Sr1
Cisco Unity Connection
Cisco Unity Connection 7.1(3a)su1
Cisco Unity Connection 8.0(2c)su1
Cisco Unity Connection 7.1
Cisco Unity Connection 8.0(3a)
Cisco Unity Connection 7.0(2a)su3
Cisco Unity Connection 2.1(4a)su2
Cisco Unity Connection 8.0(3a)su1
Cisco Unity Connection 1.1
NA
CVE-2010-0146
Directory traversal vulnerability in the Management Center for Cisco Security Agents 6.0 allows remote authenticated users to read arbitrary files via unspecified vectors.
Cisco Security Agent 6.0
NA
CVE-2010-0147
SQL injection vulnerability in the Management Center for Cisco Security Agents 5.1 prior to 5.1.0.117, 5.2 prior to 5.2.0.296, and 6.0 prior to 6.0.1.132 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Cisco Security Agent 5.1
Cisco Security Agent 5.2
Cisco Security Agent 6.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »