Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jabber vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-6409
Cisco Jabber 10.6.x, 11.0.x, and 11.1.x on Windows allows man-in-the-middle malicious users to conduct STARTTLS downgrade attacks and trigger cleartext XMPP sessions via unspecified vectors, aka Bug ID CSCuw87419.
Cisco Jabber 10.6\\(2\\)
7.8
CVSSv2
CVE-2012-3935
Cisco Unified Presence (CUP) prior to 8.6(3) and Jabber Extensible Communications Platform (aka Jabber XCP) prior to 5.3 allow remote malicious users to cause a denial of service (process crash) via a crafted XMPP stream header, aka Bug ID CSCtu32832.
Cisco Unified Presence
Cisco Unified Presence 8.6\\(1\\)
Cisco Unified Presence 8.0\\(1\\)
Cisco Unified Presence 1.0
Cisco Unified Presence 8.5\\(3\\)
Cisco Unified Presence 7.0\\(6\\)
Cisco Unified Presence 6.0\\(1\\)
Cisco Unified Presence 6.0\\(2\\)
Cisco Unified Presence 7.0\\(1\\)
Cisco Unified Presence 8.0\\(2\\)
Cisco Unified Presence 6.0 1
Cisco Unified Presence 8.5\\(1\\)
Cisco Unified Presence 7.0\\(9\\)
Cisco Unified Presence 7.0\\(3\\)
Cisco Unified Presence 6.0\\(6\\)
Cisco Unified Presence 6.0\\(7\\)
Cisco Unified Presence 7.0
Cisco Unified Presence 7.0\\(2\\)
Cisco Unified Presence 8.0\\(4\\)
Cisco Unified Presence 6.0
Cisco Unified Presence 6.0 2
Cisco Unified Presence 7.0\\(7\\)
2.1
CVSSv2
CVE-2017-12286
A vulnerability in the web interface of Cisco Jabber could allow an authenticated, local malicious user to retrieve user profile information from the affected software, which could lead to the disclosure of confidential information. The vulnerability is due to a lack of input and...
Cisco Jabber 1.9.30
Cisco Webex Meeting Center 1.9.26
7.2
CVSSv2
CVE-2019-12645
A vulnerability in Cisco Jabber Client Framework (JCF) for Mac Software, installed as part of the Cisco Jabber for Mac client, could allow an authenticated, local malicious user to execute arbitrary code on an affected device The vulnerability is due to improper file level permis...
Cisco Jabber
4.3
CVSSv2
CVE-2021-1242
A vulnerability in Cisco Webex Teams could allow an unauthenticated, remote malicious user to manipulate file names within the messaging interface. The vulnerability exists because the affected software mishandles character rendering. An attacker could exploit this vulnerability ...
Cisco Webex Teams
5.8
CVSSv2
CVE-2020-3155
A vulnerability in the SSL implementation of the Cisco Intelligent Proximity solution could allow an unauthenticated, remote malicious user to view or alter information shared on Cisco Webex video devices and Cisco collaboration endpoints if the products meet the conditions descr...
Cisco Intelligence Proximity
Cisco Jabber
Cisco Meeting
Cisco Webex Meetings
Cisco Webex Teams
Cisco Telepresence Codec C40 Firmware -
Cisco Telepresence Codec C60 Firmware -
Cisco Telepresence Codec C90 Firmware -
5
CVSSv2
CVE-2016-1316
Cisco TelePresence Video Communication Server (VCS) X8.1 through X8.7, as used in conjunction with Jabber Guest, allows remote malicious users to obtain sensitive call-statistics information via a direct request to an unspecified URL, aka Bug ID CSCux73362.
Cisco Telepresence Video Communication Server Software X8.1.2
Cisco Telepresence Video Communication Server Software X8.2 Base
Cisco Telepresence Video Communication Server Software X8.2.2
Cisco Telepresence Video Communication Server Software X8.2.1
Cisco Telepresence Video Communication Server Software X8.6.1
Cisco Telepresence Video Communication Server Software X8.6.0
Cisco Telepresence Video Communication Server Software X8.7 Base
Cisco Telepresence Video Communication Server Software X8.1.1
Cisco Telepresence Video Communication Server Software X8.5.3
Cisco Telepresence Video Communication Server Software X8.5.2
Cisco Telepresence Video Communication Server Software X8.1 Base
Cisco Telepresence Video Communication Server Software X8.5.1
Cisco Telepresence Video Communication Server Software X8.5.0
10
CVSSv2
CVE-2008-6393
PSI Jabber client prior to 0.12.1 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a file transfer request with a negative value in a SOCKS5 option, which bypasses a signed integer check and triggers an integer overflow an...
Psi-im Psi 0.9.2
Psi-im Psi 0.9.1
Psi-im Psi 0.1.0
Psi-im Psi 0.9.3
Psi-im Psi
Psi-im Psi 0.11
Psi-im Psi 0.8.6
Psi-im Psi 0.9
Psi-im Psi 0.8.7
1 EDB exploit
7.8
CVSSv2
CVE-2015-6360
The encryption-processing feature in Cisco libSRTP prior to 1.5.3 allows remote malicious users to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.
Cisco Ios Xe 3.10s 3.10.2ts
Cisco Ios Xe 3.14s 3.14.0s
Cisco Ios Xe 3.10s 3.10.2s
Cisco Ios Xe 3.15s 3.15.2s
Cisco Ios Xe 3.15s 3.15.1s
Cisco Ios Xe 3.10s 3.10.1xbs
Cisco Ios Xe 3.10s 3.10.1s
Cisco Ios Xe 3.10s 3.10.0s
Cisco Ios Xe 3.10s 3.10.6s
Cisco Ios Xe 3.11s 3.11.3s
Cisco Ios Xe 3.11s 3.11.2s
Cisco Ios Xe 3.13s 3.13.4s
Cisco Ios Xe 3.11s 3.11.1s
Cisco Ios Xe 3.11s 3.11.4s
Cisco Ios Xe 3.10s 3.10.5s
Cisco Ios Xe 3.10s 3.10.7s
Cisco Ios Xe 3.13s 3.13.1s
Cisco Ios Xe 3.13s 3.13.0s
Cisco Ios Xe 3.10s 3.10.4s
Cisco Ios Xe 3.11s 3.11.0s
Cisco Webex Meeting Center Base
Cisco Unified Ip Phone 8900 Series Firmware 9.0\\(3\\)
6.8
CVSSv2
CVE-2008-3532
The NSS plugin in libpurple in Pidgin 2.4.3 does not verify SSL certificates, which makes it easier for remote malicious users to trick a user into accepting an invalid server certificate for a spoofed service.
Pidgin Pidgin 2.4.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »