Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unified ccx vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-0402
Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack. Cisco Bug IDs: CSCvg70921.
Cisco Unified Ip Interactive Voice Response 11.5\\(1\\)
Cisco Unified Contact Center Express 11.5\\(1\\)
5
CVSSv2
CVE-2018-0403
Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote malicious user to retrieve a cleartext password. Cisco Bug IDs: CSCvg71040.
Cisco Unified Ip Interactive Voice Response 11.5\\(1\\)
Cisco Unified Contact Center Express 11.5\\(1\\)
5.5
CVSSv2
CVE-2020-3267
A vulnerability in the API subsystem of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote malicious user to change the availability state of any agent. The vulnerability is due to insufficient authorization enforcement on an affected system. ...
Cisco Unified Contact Center Express
5
CVSSv2
CVE-2019-12633
A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote malicious user to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. The vulnerability is due to improper validation of u...
Cisco Unified Contact Center Express
Cisco Unified Contact Center Express 12.0\\(1\\)
3.5
CVSSv2
CVE-2019-12626
A vulnerability in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affecte...
Cisco Unified Contact Center Express 12.5\\(1\\)
5.8
CVSSv2
CVE-2021-1358
A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote malicious user to redirect a user to an undesired web page. This vulnerability is due to improper input validation of the URL parameters in an HTTP request that is sent t...
Cisco Finesse
4.3
CVSSv2
CVE-2021-1254
Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. These vulnerabilities are due to insufficient validation of user-sup...
Cisco Finesse
4.3
CVSSv2
CVE-2021-1395
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because the web-based managem...
Cisco Unified Contact Center Enterprise -
Cisco Packaged Contact Center Enterprise -
Cisco Unified Intelligence Center
Cisco Unified Contact Center Express
Cisco Unified Intelligence Center 12.5\\(1\\)
NA
CVE-2023-20061
Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote malicious user to collect sensitive information or perform a server-side request forgery (SSRF) attack on an affected system. Cisco plans to release software updates that address th...
Cisco Unified Contact Center Express -
Cisco Unified Intelligence Center
Cisco Packaged Contact Center Enterprise -
Cisco Unified Contact Center Enterprise -
NA
CVE-2023-20062
Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote malicious user to collect sensitive information or perform a server-side request forgery (SSRF) attack on an affected system. Cisco plans to release software updates that address th...
Cisco Unified Contact Center Express -
Cisco Unified Intelligence Center
Cisco Packaged Contact Center Enterprise -
Cisco Unified Contact Center Enterprise -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »