Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified presence vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2017-12302
A vulnerability in the Cisco Unified Communications Manager SQL database interface could allow an authenticated, remote malicious user to impact the confidentiality of the system by executing arbitrary SQL queries, aka SQL Injection. The vulnerability is due to a lack of input va...
Cisco Unified Communications Domain Manager 11.0\\(1.10000.10\\)
Cisco Unified Communications Domain Manager 11.5\\(1.10000.6\\)
Cisco Unified Communications Domain Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Domain Manager 10.5\\(2.10000.5\\)
9
CVSSv2
CVE-2022-20859
A vulnerability in the Disaster Recovery framework of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P), and Cisco Unity Connection could allow an authenticated, remote malicious user to...
Cisco Unified Communications Manager Im And Presence Service
Cisco Unified Communications Manager
Cisco Unity Connection
4
CVSSv2
CVE-2020-27121
A vulnerability in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) Software could allow an authenticated, remote malicious user to cause the Cisco XCP Authentication Service on an affected device to restart, resulting in a denial of se...
Cisco Unified Communications Manager Im And Presence Service 12.5\\(1\\)
6.8
CVSSv2
CVE-2015-0753
SQL injection vulnerability in Cisco Unified Email Interaction Manager (EIM) and Unified Web Interaction Manager (WIM) 9.0(2) allows remote malicious users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuu30028.
Cisco Unified Web And E-mail Interaction Manager 9.0\\(2\\)
NA
CVE-2013-4869
Cisco Unified Communications Manager (CUCM) 7.1(x) up to and including 9.1(2) and the IM & Presence Service in Cisco Unified Presence Server up to and including 9.1(2) use the same CTI and database-encryption key across different customers' installations, which makes it ...
Cisco Unified Communications Manager
7.5
CVSSv2
CVE-2014-0728
SQL injection vulnerability in the Java database interface in Cisco Unified Communications Manager (UCM) 10.0(1) and previous versions allows remote malicious users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCum05313.
Cisco Unified Communications Manager
Cisco Unified Communications Manager 10.0
6.5
CVSSv2
CVE-2016-1308
SQL injection vulnerability in Cisco Unified Communications Manager 10.5(2.13900.9) allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCux99227.
Cisco Unified Communications Manager 10.5\\\\\\(2.13900.9\\\\\\)
5.5
CVSSv2
CVE-2022-20786
A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an authenticated, remote malicious user to conduct SQL injection attacks on an affected system. This vulnerability is ...
Cisco Unified Communications Manager Im And Presence Service
7.5
CVSSv2
CVE-2014-0729
SQL injection vulnerability in the Enterprise Mobility Application (EMApp) interface in Cisco Unified Communications Manager (UCM) allows remote malicious users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCum05302.
Cisco Unified Communications Manager
4
CVSSv2
CVE-2014-2102
Cisco Unified Contact Center Express (Unified CCX) does not properly restrict the content of the CCMConfig page, which allows remote authenticated users to obtain sensitive information by examining this content, aka Bug ID CSCum95575.
Cisco Unified Contact Center Express Editor Software -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »