Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified communications manager 4.3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-0285
The ssl3_client_hello function in s3_clnt.c in OpenSSL 1.0.2 prior to 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote malicious users to defeat cryptographic protection mechanisms by sniffing the network and then...
Openssl Openssl 1.0.2
NA
CVE-2015-0290
The multi-block feature in the ssl3_write_bytes function in s3_pkt.c in OpenSSL 1.0.2 prior to 1.0.2a on 64-bit x86 platforms with AES NI support does not properly handle certain non-blocking I/O cases, which allows remote malicious users to cause a denial of service (pointer cor...
Openssl Openssl 1.0.2
NA
CVE-2015-0291
The sigalgs implementation in t1_lib.c in OpenSSL 1.0.2 prior to 1.0.2a allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) by using an invalid signature_algorithms extension in the ClientHello message during a renegotiation.
Openssl Openssl 1.0.2
3 Github repositories
2 Articles
NA
CVE-2014-3569
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected ...
Openssl Openssl 1.0.1j
NA
CVE-2014-0740
Cross-site request forgery (CSRF) vulnerability in the Call Detail Records Analysis and Reporting (CAR) interface in the OS Administration component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows remote malicious users to hijack the auth...
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 3.3(5)
Cisco Unified Communications Manager 4.1(3)sr1
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 4.1(3)sr2
Cisco Unified Communications Manager 4.1(3)
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.1(3)sr4
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 3.3(5)sr2a
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 4.1(3)sr3
Cisco Unified Communications Manager 3.3(5)sr1
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Unified Communications Manager
NA
CVE-2014-0741
The certificate-import feature in the Certificate Authority Proxy Function (CAPF) CLI implementation in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows local users to read or modify arbitrary files via a crafted command, aka Bug ID CSCum9546...
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 3.3(5)
Cisco Unified Communications Manager 4.1(3)sr1
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 4.1(3)sr2
Cisco Unified Communications Manager 4.1(3)
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.1(3)sr4
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 3.3(5)sr2a
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 4.1(3)sr3
Cisco Unified Communications Manager 3.3(5)sr1
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Unified Communications Manager
NA
CVE-2014-0742
The Certificate Authority Proxy Function (CAPF) CLI implementation in the CSR management feature in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows local users to read or modify arbitrary files via unspecified vectors, aka Bug ID CSCum95464.
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 3.3(5)
Cisco Unified Communications Manager 4.1(3)sr1
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 4.1(3)sr2
Cisco Unified Communications Manager 4.1(3)
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.1(3)sr4
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 3.3(5)sr2a
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 4.1(3)sr3
Cisco Unified Communications Manager 3.3(5)sr1
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Unified Communications Manager
NA
CVE-2014-0743
The Certificate Authority Proxy Function (CAPF) component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows remote malicious users to bypass authentication and modify registered-device information via crafted data, aka Bug ID CSCum95468.
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 3.3(5)
Cisco Unified Communications Manager 4.1(3)sr1
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 4.1(3)sr2
Cisco Unified Communications Manager 4.1(3)
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.1(3)sr4
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 3.3(5)sr2a
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 4.1(3)sr3
Cisco Unified Communications Manager 3.3(5)sr1
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Unified Communications Manager
NA
CVE-2014-0747
The Certificate Authority Proxy Function (CAPF) CLI implementation in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows local users to inject commands via unspecified CAPF programs, aka Bug ID CSCum95493.
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 3.3(5)
Cisco Unified Communications Manager 4.1(3)sr1
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 4.1(3)sr2
Cisco Unified Communications Manager 4.1(3)
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.1(3)sr4
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 3.3(5)sr2a
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 4.1(3)sr3
Cisco Unified Communications Manager 3.3(5)sr1
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Unified Communications Manager
NA
CVE-2014-0731
The administration interface in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows remote malicious users to bypass authentication and read Java class files via a direct request, aka Bug ID CSCum46497.
Cisco Unified Communications Manager 4.2.3sr2
Cisco Unified Communications Manager 3.3(5)
Cisco Unified Communications Manager 4.1(3)sr1
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 4.1(3)sr2
Cisco Unified Communications Manager 4.1(3)
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.1(3)sr4
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 3.3(5)sr2a
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 4.1(3)sr3
Cisco Unified Communications Manager 3.3(5)sr1
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Unified Communications Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »