Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified communications manager 6.1 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-3733
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 prior to 1.1.0e to crash (dependent on ciphersuite). Both clients and servers are affected.
Openssl Openssl 1.1.0
Openssl Openssl 1.1.0c
Openssl Openssl 1.1.0d
Openssl Openssl 1.1.0a
Openssl Openssl 1.1.0b
Hp Operations Agent 11.15
Hp Operations Agent 11.14
1 Github repository
5
CVSSv2
CVE-2015-8139
ntpq in NTP prior to 4.2.8p7 allows remote malicious users to obtain origin timestamps and then impersonate peers via unspecified vectors.
Ntp Ntp
5
CVSSv2
CVE-2008-2730
The Real-Time Information Server (RIS) Data Collector service in Cisco Unified Communications Manager (CUCM) 5.x prior to 5.1(3) and 6.x prior to 6.1(1) allows remote malicious users to bypass authentication, and obtain cluster configuration information and statistics, via a dire...
Cisco Unified Communications Manager 5.1
Cisco Unified Communications Manager 6.1
4.3
CVSSv2
CVE-2009-0057
The Certificate Authority Proxy Function (CAPF) service in Cisco Unified Communications Manager 5.x prior to 5.1(3e) and 6.x prior to 6.1(3) allows remote malicious users to cause a denial of service (voice service outage) by sending malformed input over a TCP session in which th...
Cisco Unified Communications Manager 5.0 4
Cisco Unified Communications Manager 5.0 3a
Cisco Unified Communications Manager 5.1.2
Cisco Unified Communications Manager 5.1
Cisco Unified Communications Manager 5.1 3a
Cisco Unified Communications Manager 6.1
Cisco Unified Communications Manager 6.0
Cisco Unified Communications Manager 5.0 4a
Cisco Unified Communications Manager 5.0 4a Su1
Cisco Unified Communications Manager 5.0 2
Cisco Unified Communications Manager 5.1\\(3c\\)
Cisco Unified Communications Manager 5.1\\(2\\)
Cisco Unified Communications Manager 5.1 1
Cisco Unified Communications Manager 5.0
Cisco Unified Communications Manager 5.0 1
Cisco Unified Communications Manager 5.1 2b
Cisco Unified Communications Manager 5.1 2a
Cisco Unified Communications Manager 6.0 1
Cisco Unified Communications Manager 6.0 1a
Cisco Unified Communications Manager 6.1.0
Cisco Unified Communications Manager 5.0 3
Cisco Unified Communications Manager 5.1\\(1\\)
4
CVSSv2
CVE-2015-7976
The ntpq saveconfig command in NTP 4.1.2, 4.2.x prior to 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows malicious users to cause unspecified impact via a crafted filename.
Ntp Ntp 4.1.2
Ntp Ntp
Ntp Ntp 4.3.0
Ntp Ntp 4.3.1
Ntp Ntp 4.3.16
Ntp Ntp 4.3.17
Ntp Ntp 4.3.24
Ntp Ntp 4.3.25
Ntp Ntp 4.3.31
Ntp Ntp 4.3.32
Ntp Ntp 4.3.39
Ntp Ntp 4.3.4
Ntp Ntp 4.3.47
Ntp Ntp 4.3.48
Ntp Ntp 4.3.54
Ntp Ntp 4.3.55
Ntp Ntp 4.3.61
Ntp Ntp 4.3.62
Ntp Ntp 4.3.63
Ntp Ntp 4.3.7
Ntp Ntp 4.3.70
Ntp Ntp 4.3.77
4
CVSSv2
CVE-2014-0657
The administration portal in Cisco Unified Communications Manager (Unified CM) 9.1(1) and previous versions does not properly handle role restrictions, which allows remote authenticated users to bypass role-based access control via multiple visits to a forbidden portal URL, aka B...
Cisco Unified Communications Manager 4.1\\(3\\)sr3
Cisco Unified Communications Manager 4.1\\(3\\)sr4
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.3\\(1\\)
Cisco Unified Communications Manager 5.1\\(2a\\)
Cisco Unified Communications Manager 5.1\\(2b\\)
Cisco Unified Communications Manager 6.0
Cisco Unified Communications Manager 6.0\\(1\\)
Cisco Unified Communications Manager 6.0\\(1a\\)
Cisco Unified Communications Manager 6.1\\(2\\)su1a
Cisco Unified Communications Manager 6.1\\(3\\)
Cisco Unified Communications Manager 6.1\\(4a\\)su2
Cisco Unified Communications Manager 6.1\\(5\\)
Cisco Unified Communications Manager 7.0\\(2a\\)su1
Cisco Unified Communications Manager 7.0\\(2a\\)su2
Cisco Unified Communications Manager 7.1\\(3a\\)su1
Cisco Unified Communications Manager 7.1\\(3a\\)su1a
Cisco Unified Communications Manager 7.1\\(5a\\)
Cisco Unified Communications Manager 7.1\\(5b\\)
Cisco Unified Communications Manager 8.0
Cisco Unified Communications Manager 8.0\\(1\\)
4
CVSSv2
CVE-2013-6978
The disaster recovery system (DRS) component in Cisco Unified Communications Manager (UCM) 9.1(1) and previous versions allows remote authenticated users to obtain sensitive device information by reading "extraneous information" in HTML source code, aka Bug ID CSCuj3924...
Cisco Unified Communications Manager 9.0\\(1\\)
Cisco Unified Communications Manager 8.6\\(4\\)
Cisco Unified Communications Manager 8.6\\(1\\)
Cisco Unified Communications Manager 8.6
Cisco Unified Communications Manager 8.5
Cisco Unified Communications Manager 8.0\\(3a\\)su3
Cisco Unified Communications Manager 8.0\\(2b\\)
Cisco Unified Communications Manager 8.0\\(2a\\)
Cisco Unified Communications Manager 7.1\\(5b\\)su2
Cisco Unified Communications Manager 7.1\\(5b\\)su1a
Cisco Unified Communications Manager 7.1\\(3b\\)su2
Cisco Unified Communications Manager 7.1\\(3b\\)su1
Cisco Unified Communications Manager 7.1\\(2b\\)
Cisco Unified Communications Manager 7.1\\(2a\\)su1
Cisco Unified Communications Manager 8.6\\(3\\)
Cisco Unified Communications Manager 8.6\\(2a\\)su3
Cisco Unified Communications Manager 8.5\\(1\\)su5
Cisco Unified Communications Manager 8.5\\(1\\)su4
Cisco Unified Communications Manager 8.0\\(3a\\)su2
Cisco Unified Communications Manager 8.0\\(3a\\)su1
Cisco Unified Communications Manager 8.0\\(2\\)
Cisco Unified Communications Manager 8.0\\(1\\)
2.1
CVSSv2
CVE-2015-7975
The nextvar function in NTP prior to 4.2.8p6 and 4.3.x prior to 4.3.90 does not properly validate the length of its input, which allows an malicious user to cause a denial of service (application crash).
Ntp Ntp 4.3.0
Ntp Ntp 4.3.1
Ntp Ntp 4.3.16
Ntp Ntp 4.3.17
Ntp Ntp 4.3.18
Ntp Ntp 4.3.24
Ntp Ntp 4.3.25
Ntp Ntp 4.3.31
Ntp Ntp 4.3.32
Ntp Ntp 4.3.39
Ntp Ntp 4.3.4
Ntp Ntp 4.3.40
Ntp Ntp 4.3.47
Ntp Ntp 4.3.48
Ntp Ntp 4.3.54
Ntp Ntp 4.3.55
Ntp Ntp 4.3.62
Ntp Ntp 4.3.63
Ntp Ntp 4.3.7
Ntp Ntp 4.3.70
Ntp Ntp 4.3.77
Ntp Ntp 4.3.78
NA
CVE-2023-38545
This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 byte...
Haxx Libcurl
Fedoraproject Fedora 37
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Microsoft Windows 10 22h2
Microsoft Windows 11 21h2
Microsoft Windows 11 22h2
Microsoft Windows 11 23h2
Microsoft Windows 10 1809
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows 10 21h2
9 Github repositories
2 Articles
NA
CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Ietf Http 2.0
Nghttp2 Nghttp2
Netty Netty
Envoyproxy Envoy 1.27.0
Envoyproxy Envoy 1.26.4
Envoyproxy Envoy 1.25.9
Envoyproxy Envoy 1.24.10
Eclipse Jetty
Caddyserver Caddy
Golang Http2
Golang Go
Golang Networking
F5 Big-ip Analytics
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Local Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Global Traffic Manager
F5 Big-ip Fraud Protection Service
F5 Big-ip Domain Name System
F5 Big-ip Application Security Manager
F5 Big-ip Application Acceleration Manager
F5 Big-ip Advanced Firewall Manager
34 Github repositories
2 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6