Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified contact center express vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-3177
A vulnerability in the Tool for Auto-Registered Phones Support (TAPS) of Cisco Unified Communications Manager (UCM) and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote malicious user to conduct directory traversal attac...
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)
Cisco Unified Communications Manager 11.5\\(1.10000.6\\)
Cisco Unified Communications Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Manager 12.5\\(1.10000.22\\)
Cisco Unified Contact Center Express 12.0\\(1\\)
3.5
CVSSv2
CVE-2015-7851
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...
Ntp Ntp
Ntp Ntp 4.2.8
4.3
CVSSv2
CVE-2019-15278
A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote malicious user to bypass authorization and access sensitive information related to the device. The vulnerability exists because the software fails to sanitize URLs before...
Cisco Finesse 11.6\\(1\\)
Cisco Finesse 12.0\\(1\\)
Cisco Finesse 12.5\\(1\\)
Cisco Unified Contact Center Express 12.0\\(1\\)
4.3
CVSSv2
CVE-2019-15259
A vulnerability in Cisco Unified Contact Center Express (UCCX) Software could allow an unauthenticated, remote malicious user to conduct an HTTP response splitting attack. The vulnerability is due to insufficient input validation of some parameters that are passed to the web serv...
Cisco Unified Contact Center Express 12.0\\(1\\)
Cisco Unified Contact Center Express
5
CVSSv2
CVE-2019-12633
A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote malicious user to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. The vulnerability is due to improper validation of u...
Cisco Unified Contact Center Express
Cisco Unified Contact Center Express 12.0\\(1\\)
3.5
CVSSv2
CVE-2019-12626
A vulnerability in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affecte...
Cisco Unified Contact Center Express 12.5\\(1\\)
4
CVSSv2
CVE-2019-1860
A vulnerability in the dashboard gadget rendering of Cisco Unified Intelligence Center could allow an unauthenticated, remote malicious user to obtain or manipulate sensitive information between a user’s browser and Cisco Unified Intelligence Center. The vulnerability i...
Cisco Unified Intelligence Center 12.0\\(1\\)
4.3
CVSSv2
CVE-2019-1670
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web interface of an affected system. The vulnerability is...
Cisco Unified Intelligence Center 9.5\\(1\\)
9.3
CVSSv2
CVE-2018-11776
Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or...
Apache Struts
3 EDB exploits
45 Github repositories
3 Articles
4.3
CVSSv2
CVE-2018-0400
Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote malicious user to conduct cross-site scripting (XSS) attacks against a user of the interface. Cisco Bug IDs: CSCvg70904.
Cisco Unified Contact Center Express 11.5\\(1\\)
Cisco Unified Ip Interactive Voice Response 11.5\\(1\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »