Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified communications domain manager - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-8018
Multiple cross-site scripting (XSS) vulnerabilities in Business Voice Services Manager (BVSM) pages in the Application Software in Cisco Unified Communications Domain Manager 8 allow remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka Bug IDs CSCu...
Cisco Unified Communications Domain Manager 8.0
NA
CVE-2014-8010
The web framework in Cisco Unified Communications Domain Manager 8 allows remote authenticated administrators to execute arbitrary OS commands via crafted values, aka Bug ID CSCuq50205.
Cisco Unified Communications Domain Manager 8.0
NA
CVE-2014-3380
Cisco Unified Communications Domain Manager Platform Software 4.4(.3) and previous versions allows remote malicious users to cause a denial of service (CPU consumption) by sending crafted TCP packets quickly, aka Bug ID CSCuo42063.
Cisco Unified Communications Domain Manager Platform 4.4(.3)
NA
CVE-2014-3339
Multiple SQL injection vulnerabilities in the administrative web interface in Cisco Unified Communications Manager (CM) and Cisco Unified Presence Server (CUPS) allow remote authenticated users to execute arbitrary SQL commands via crafted input to unspecified pages, aka Bug ID C...
Cisco Unified Communications Domain Manager -
Cisco Unified Presence Server
NA
CVE-2014-3337
The SIP implementation in Cisco Unified Communications Manager (CM) 8.6(.2) and previous versions allows remote authenticated users to cause a denial of service (process crash) via a crafted SIP message that is not properly handled during processing of an XML document, aka Bug ID...
Cisco Unified Communications Domain Manager
NA
CVE-2014-3320
Multiple open redirect vulnerabilities in the admin web interface in the web framework in Cisco Unified Communications Domain Manager (CDM) 8.1(.4) and previous versions allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via crafted...
Cisco Unified Communications Domain Manager 8.1
Cisco Unified Communications Domain Manager 8.1(.3)
Cisco Unified Communications Domain Manager
Cisco Unified Communications Domain Manager 8.1(.1)
Cisco Unified Communications Domain Manager 8.1(.2)
NA
CVE-2014-3300
The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager (CDM) in Unified CDM Application Software prior to 10 does not properly implement access control, which allows remote malicious users to modify user information via a crafted URL, aka Bug ID CS...
Cisco Unified Communications Domain Manager -
Cisco Unified Cdm Application Software 8.1
Cisco Unified Cdm Application Software
NA
CVE-2014-2197
The Administration GUI in the web framework in Cisco Unified Communications Domain Manager (CDM) in Unified CDM Application Software prior to 8.1.4 does not properly implement access control, which allows remote authenticated users to modify administrative credentials via a craft...
Cisco Unified Communications Domain Manager -
Cisco Unified Cdm Application Software
NA
CVE-2014-2198
Cisco Unified Communications Domain Manager (CDM) in Unified CDM Platform Software prior to 4.4.2 has a hardcoded SSH private key, which makes it easier for remote malicious users to obtain access to the support and root accounts by extracting this key from a binary file found in...
Cisco Unified Communications Domain Manager -
Cisco Unified Cdm Platform Software
NA
CVE-2014-3278
The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which allows remote malicious users to enumerate accounts by visiting an unspecified BVSMWeb web page, aka Bug IDs CSCun39619 and CSCun45572.
Cisco Unified Communications Domain Manager -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6267
XML injection
CVE-2024-37673
CVE-2024-6266
CVE-2024-30078
arbitrary
CVE-2024-36886
CVE-2024-5346
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »