Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified communications manager - vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-0474
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an authenticated, remote malicious user to view digest credentials in clear text. The vulnerability is due to the incorrect inclusion of saved passwords in configuration page...
Cisco Unified Communications Manager 10.5(2.14076.1)
8.8
CVSSv3
CVE-2018-0364
A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. The vulnerability ...
Cisco Unified Communications Domain Manager
8.8
CVSSv3
CVE-2018-0363
A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service (formerly CUPS) could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an ...
Cisco Unified Communications Manager Im And Presence Service 11.5(1)
8.8
CVSSv3
CVE-2015-7849
Use-after-free vulnerability in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
8.8
CVSSv3
CVE-2015-7854
Buffer overflow in the password management functionality in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
8.8
CVSSv3
CVE-2017-6757
A vulnerability in Cisco Unified Communications Manager 10.5(2.10000.5), 11.0(1.10000.10), and 11.5(1.10000.6) could allow an authenticated, remote malicious user to conduct a blind SQL injection attack. The vulnerability is due to a failure to validate user-supplied input used i...
Cisco Unified Communications Manager 11.0(1.10000.10)
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
8.6
CVSSv3
CVE-2020-3226
A vulnerability in the Session Initiation Protocol (SIP) library of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote malicious user to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is...
Cisco Ios Xe 3.13.2s
Cisco Ios Xe 3.10.6s
Cisco Ios Xe 3.13.6s
Cisco Ios 15.5(1)t1
Cisco Ios Xe 3.14.4s
Cisco Ios Xe 3.15.1cs
Cisco Ios 15.6(2)t3
Cisco Ios 15.6(1)t2
Cisco Ios Xe 3.13.4s
Cisco Ios 15.5(3)m4a
Cisco Ios Xe 16.2.1
Cisco Ios 15.5(1)t3
Cisco Ios Xe 3.13.0s
Cisco Ios 15.6(2)t1
Cisco Ios Xe 3.17.3s
Cisco Ios Xe 3.16.0s
Cisco Ios Xe 3.14.1s
Cisco Ios 15.4(3)m2
Cisco Ios Xe 3.12.2s
Cisco Ios 15.6(3)m1
Cisco Ios 15.4(2)t1
Cisco Ios 15.4(1)t2
8.6
CVSSv3
CVE-2019-1845
A vulnerability in the authentication service of the Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, Cisco TelePresence Video Communication Server (VCS), and Cisco Expressway Series could allow an unauthenticated, remote malicious user to c...
Cisco Unified Communications Manager Im And Presence Service 11.5(1)
Cisco Telepresence Video Communication Server
8.5
CVSSv3
CVE-2021-39144
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker has sufficient rights to execute commands of the host only by manipulating the processed input stream. No user is affected, who followed the...
Xstream Project Xstream
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Netapp Snapmanager -
Oracle Webcenter Portal 12.2.1.3.0
Oracle Utilities Framework 4.2.0.3.0
Oracle Utilities Framework 4.2.0.2.0
Oracle Utilities Framework 4.3.0.6.0
Oracle Utilities Framework 4.4.0.0.0
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Communications Unified Inventory Management 7.4.0
Oracle Webcenter Portal 12.2.1.4.0
Oracle Utilities Framework 4.4.0.2.0
Oracle Communications Billing And Revenue Management Elastic Charging Engine 11.3
Oracle Communications Billing And Revenue Management Elastic Charging Engine 12.0
Oracle Business Activity Monitoring 12.2.1.4.0
Oracle Commerce Guided Search 11.3.2
1 Metasploit module
3 Github repositories
2 Articles
8.1
CVSSv3
CVE-2022-20816
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authenticated, remote malicious user to delete arbitrary files from an af...
Cisco Unified Communications Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »