Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unified communications manager vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2017-12357
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulnera...
Cisco Unified Communications Manager 11.0(1.10000.10)
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0(1.10000.10)
6.1
CVSSv3
CVE-2018-0328
A vulnerability in the web framework of Cisco Unified Communications Manager and Cisco Unified Presence could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web interface of an affected system. The vulnerabilit...
Cisco Unified Communications Manager 11.0(1.10000.10)
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0(1.10000.10)
5.4
CVSSv3
CVE-2018-0340
A vulnerability in the web framework of the Cisco Unified Communications Manager (Unified CM) software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against the user of the web interface of the affected system. The vulnerabilit...
Cisco Unified Communications Manager 11.0(1.10000.10)
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0(1.10000.10)
NA
CVE-2015-4196
Platform Software prior to 4.4.5 in Cisco Unified Communications Domain Manager (CDM) 8.x has a hardcoded password for a privileged account, which allows remote malicious users to obtain root access by leveraging knowledge of this password and entering it in an SSH session, aka B...
Cisco Unified Communications Domain Manager 4.4.2
Cisco Unified Communications Domain Manager 4.4.4
Cisco Unified Communications Domain Manager 4.4.3
Cisco Unified Communications Domain Manager 4.4.1
7.5
CVSSv3
CVE-2016-6364
The User Data Services (UDS) API implementation in Cisco Unified Communications Manager 11.5 allows remote malicious users to bypass intended access restrictions and obtain sensitive information via unspecified API calls, aka Bug ID CSCux67855.
Cisco Unified Communications Manager 11.5.0
7.5
CVSSv3
CVE-2023-20259
A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow an unauthenticated, remote malicious user to cause high CPU utilization, which could impact access to the web-based management interface and cause delays with call processing. This AP...
Cisco Unity Connection 14su3
Cisco Emergency Responder 14su3
Cisco Unified Communications Manager 14su3
Cisco Unified Communications Manager Im & Presence Service 14su3
Cisco Unified Communications Manager Im & Presence Service 12.5(1)su7
Cisco Unified Communications Manager 12.5(1)su7
Cisco Prime Collaboration Deployment 14su3
4.3
CVSSv3
CVE-2017-12302
A vulnerability in the Cisco Unified Communications Manager SQL database interface could allow an authenticated, remote malicious user to impact the confidentiality of the system by executing arbitrary SQL queries, aka SQL Injection. The vulnerability is due to a lack of input va...
Cisco Unified Communications Domain Manager 10.5(2.10000.5)
Cisco Unified Communications Domain Manager 11.0(1.10000.10)
Cisco Unified Communications Domain Manager 11.5(1.10000.6)
Cisco Unified Communications Domain Manager 12.0(1.10000.10)
NA
CVE-2014-3320
Multiple open redirect vulnerabilities in the admin web interface in the web framework in Cisco Unified Communications Domain Manager (CDM) 8.1(.4) and previous versions allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via crafted...
Cisco Unified Communications Domain Manager 8.1
Cisco Unified Communications Domain Manager 8.1(.3)
Cisco Unified Communications Domain Manager
Cisco Unified Communications Domain Manager 8.1(.1)
Cisco Unified Communications Domain Manager 8.1(.2)
7.5
CVSSv3
CVE-2016-6464
A vulnerability in the web management interface of the Cisco Unified Communications Manager IM and Presence Service could allow an unauthenticated, remote malicious user to view information on web pages that should be restricted. More Information: CSCva49629. Known Affected Relea...
Cisco Unified Communications Manager Im And Presence Service 10.5(1)
Cisco Unified Communications Manager Im And Presence Service 11.5(1)
Cisco Unified Communications Manager Im And Presence Service 10.5(2)
Cisco Unified Communications Manager Im And Presence Service 11.0(1)
NA
CVE-2015-6425
The WebApplications Identity Management subsystem in Cisco Unified Communications Manager 10.5(0.98000.88) allows remote malicious users to cause a denial of service (subsystem outage) via invalid session tokens, aka Bug ID CSCul83786.
Cisco Unified Communications Manager 10.5(0.98000.88)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »