Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified communications manager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2020-3420
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) at...
5
CVSSv2
CVE-2020-3360
A vulnerability in the Web Access feature of Cisco IP Phones Series 7800 and Series 8800 could allow an unauthenticated, remote malicious user to view sensitive information on an affected device. The vulnerability is due to improper access controls on the web-based management int...
Cisco Unified Ip Phone 6901 Firmware
Cisco Unified Ip Phone 6961 Firmware
Cisco Unified Ip Phone 6945 Firmware
Cisco Unified Ip Phone 6941 Firmware
Cisco Unified Ip Phone 6921 Firmware
Cisco Unified Ip Phone 6911 Firmware
Cisco Unified Ip Phone 7832 Firmware
Cisco Unified Ip Phone 7861 Firmware
Cisco Unified Ip Phone 7841 Firmware
Cisco Unified Ip Phone 7821 Firmware
Cisco Unified Ip Phone 7811 Firmware
Cisco Unified Ip Phone 7937g Firmware
Cisco Unified Ip Phone 7975g Firmware
Cisco Unified Ip Phone 7965g Firmware
Cisco Unified Ip Phone 7962g Firmware
Cisco Unified Ip Phone 7961g Firmware
Cisco Unified Ip Phone 7960g Firmware
Cisco Unified Ip Phone 7945g Firmware
Cisco Unified Ip Phone 7942g Firmware
Cisco Unified Ip Phone 7941g Firmware
Cisco Unified Ip Phone 7940g Firmware
Cisco Unified Ip Phone 7931g Firmware
7.8
CVSSv2
CVE-2020-3226
A vulnerability in the Session Initiation Protocol (SIP) library of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote malicious user to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is...
Cisco Ios 15.0\\(2\\)sg11a
Cisco Ios 15.3\\(3\\)jaa1
Cisco Ios 15.3\\(3\\)jpi
Cisco Ios 15.3\\(3\\)jpj
Cisco Ios 15.3\\(3\\)m
Cisco Ios 15.3\\(3\\)m1
Cisco Ios 15.3\\(3\\)m2
Cisco Ios 15.3\\(3\\)m3
Cisco Ios 15.3\\(3\\)m4
Cisco Ios 15.3\\(3\\)m5
Cisco Ios 15.3\\(3\\)m6
Cisco Ios 15.3\\(3\\)m7
Cisco Ios 15.3\\(3\\)m8
Cisco Ios 15.3\\(3\\)m8a
Cisco Ios 15.3\\(3\\)m9
Cisco Ios 15.3\\(3\\)m10
Cisco Ios 15.3\\(3\\)xb12
Cisco Ios 15.4\\(1\\)cg
Cisco Ios 15.4\\(1\\)t
Cisco Ios 15.4\\(1\\)t1
Cisco Ios 15.4\\(1\\)t2
Cisco Ios 15.4\\(1\\)t3
5
CVSSv2
CVE-2020-3177
A vulnerability in the Tool for Auto-Registered Phones Support (TAPS) of Cisco Unified Communications Manager (UCM) and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote malicious user to conduct directory traversal attac...
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)
Cisco Unified Communications Manager 11.5\\(1.10000.6\\)
Cisco Unified Communications Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Manager 12.5\\(1.10000.22\\)
Cisco Unified Contact Center Express 12.0\\(1\\)
10
CVSSv2
CVE-2020-3161
A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote malicious user to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of prop...
Cisco Ip Phone 8865 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8865 Firmware 11.0\\(1\\)
Cisco Ip Phone 8865 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 8851 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8851 Firmware 11.0\\(1\\)
Cisco Ip Phone 8851 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 7841 Firmware 11.0\\(1\\)
Cisco Ip Phone 7821 Firmware 11.0\\(1\\)
Cisco Ip Phone 8811 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8811 Firmware 11.0\\(1\\)
Cisco Ip Phone 8811 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 8861 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8861 Firmware 11.0\\(1\\)
Cisco Ip Phone 8861 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 8845 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8845 Firmware 11.0\\(1\\)
Cisco Ip Phone 8845 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 7861 Firmware 11.0\\(1\\)
Cisco Ip Phone 8841 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8841 Firmware 11.0\\(1\\)
Cisco Ip Phone 8841 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 7811 Firmware 11.0\\(1\\)
1 Github repository
4.3
CVSSv2
CVE-2015-0749
A vulnerability in Cisco Unified Communications Manager could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack on the affected software. The vulnerabilities is due to improper input validation of certain parameters passed to the affec...
Cisco Unified Communications Manager
3.5
CVSSv2
CVE-2015-7851
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...
Ntp Ntp
Ntp Ntp 4.2.8
3.5
CVSSv2
CVE-2019-15968
A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager (Unified CDM) could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affecte...
Cisco Hosted Collaboration Solution 8.1\\(8\\)er1
Cisco Unified Communications Domain Manager
6.5
CVSSv2
CVE-2019-15972
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an authenticated, remote malicious user to conduct SQL injection attacks on an affected system. The vulnerability exists because the web-based management interface improperly...
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)
Cisco Unified Communications Manager 11.5\\(1.10000.6\\)
Cisco Unified Communications Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Manager 12.5\\(1.10000.22\\)
2 Github repositories
4
CVSSv2
CVE-2019-12710
A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an authenticated, remote malicious user to impact the confidentiality of an affected system by executing arbitr...
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)
Cisco Unified Communications Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Manager 12.5\\(1.10000.22\\)
Cisco Unified Communications Manager 11.5\\(1.10000.6\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »