Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unity connection vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-3130
A vulnerability in the web management interface of Cisco Unity Connection could allow an authenticated remote malicious user to overwrite files on the underlying filesystem. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by...
Cisco Unity Connection
NA
CVE-2020-3532
A vulnerability in the web-based management interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, and Cisco Unity Connection could allow an unauthenti...
9.8
CVSSv3
CVE-2020-3140
A vulnerability in the web management interface of Cisco Prime License Manager (PLM) Software could allow an unauthenticated, remote malicious user to gain unauthorized access to an affected device. The vulnerability is due to insufficient validation of user input on the web mana...
Cisco Prime License Manager
1 Article
6.1
CVSSv3
CVE-2020-3282
A vulnerability in the web-based management interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, and Cisco Unity Connection could allow an unauthenti...
Cisco Unified Communications Manager
Cisco Unified Communications Manager 12.0\\(1\\)
Cisco Unified Communications Manager 12.5\\(1\\)
Cisco Unified Communications Manager Im And Presence Service
Cisco Unified Communications Manager Im And Presence Service 12.0\\(1\\)
Cisco Unified Communications Manager Im And Presence Service 12.5\\(1\\)
Cisco Unity Connection
Cisco Unity Connection 12.0\\(1\\)
Cisco Unity Connection 12.5\\(1\\)
6.5
CVSSv3
CVE-2015-7851
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...
Ntp Ntp
Ntp Ntp 4.2.8
4.8
CVSSv3
CVE-2020-3129
A vulnerability in the web-based management interface of Cisco Unity Connection Software could allow an authenticated, remote malicious user to perform a stored cross-site scripting (XSS) attack. The vulnerability is due to insufficient input validation by the web-based managemen...
Cisco Unity Connection
6.1
CVSSv3
CVE-2019-12707
A vulnerability in the web-based interface of multiple Cisco Unified Communications products could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based interface of the affected software. The vulnerability ...
Cisco Unified Communications Manager 12.5\\(1.10000.22\\)
Cisco Unified Communications Manager 11.5\\(1.10000.6\\)
Cisco Unified Communications Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)
Cisco Unified Communications Manager Im And Presence Service 14.0\\(1\\)
Cisco Unity Connection 11.5
Cisco Unity Connection 12.0
Cisco Unity Connection 12.5
6.5
CVSSv3
CVE-2019-1915
A vulnerability in the web-based interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition (SME), Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, and Cisco Unity Connection could allo...
Cisco Unified Communications Manager 11.5\\(1.10000.6\\)
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)
Cisco Unified Communications Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Manager 12.5\\(1.10000.22\\)
Cisco Unity Connection 12.5
Cisco Unity Connection 12.0
Cisco Unity Connection 11.5
Cisco Unity Connection 14.0
Cisco Unified Communications Manager Im And Presence Service 12.5\\(1\\)
6.1
CVSSv3
CVE-2019-1685
A vulnerability in the Security Assertion Markup Language (SAML) single sign-on (SSO) interface of Cisco Unity Connection could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected device. Th...
Cisco Unity Connection 12.5
9.8
CVSSv3
CVE-2018-15441
A vulnerability in the web framework code of Cisco Prime License Manager (PLM) could allow an unauthenticated, remote malicious user to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation of user-supplied input in SQL queries. An attacker could ...
Cisco Prime License Manager
Cisco Prime License Manager 11.5\\(1\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »