Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified presence vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-20859
A vulnerability in the Disaster Recovery framework of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P), and Cisco Unity Connection could allow an authenticated, remote malicious user to...
Cisco Unified Communications Manager Im And Presence Service
Cisco Unified Communications Manager
Cisco Unity Connection
6.5
CVSSv3
CVE-2020-27121
A vulnerability in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) Software could allow an authenticated, remote malicious user to cause the Cisco XCP Authentication Service on an affected device to restart, resulting in a denial of se...
Cisco Unified Communications Manager Im And Presence Service 12.5(1)
4.3
CVSSv3
CVE-2017-12302
A vulnerability in the Cisco Unified Communications Manager SQL database interface could allow an authenticated, remote malicious user to impact the confidentiality of the system by executing arbitrary SQL queries, aka SQL Injection. The vulnerability is due to a lack of input va...
Cisco Unified Communications Domain Manager 10.5(2.10000.5)
Cisco Unified Communications Domain Manager 11.0(1.10000.10)
Cisco Unified Communications Domain Manager 11.5(1.10000.6)
Cisco Unified Communications Domain Manager 12.0(1.10000.10)
NA
CVE-2015-0753
SQL injection vulnerability in Cisco Unified Email Interaction Manager (EIM) and Unified Web Interaction Manager (WIM) 9.0(2) allows remote malicious users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuu30028.
Cisco Unified Web And E-mail Interaction Manager 9.0(2)
NA
CVE-2014-0728
SQL injection vulnerability in the Java database interface in Cisco Unified Communications Manager (UCM) 10.0(1) and previous versions allows remote malicious users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCum05313.
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager
NA
CVE-2013-4869
Cisco Unified Communications Manager (CUCM) 7.1(x) up to and including 9.1(2) and the IM & Presence Service in Cisco Unified Presence Server up to and including 9.1(2) use the same CTI and database-encryption key across different customers' installations, which makes it ...
Cisco Unified Communications Manager
8.1
CVSSv3
CVE-2022-20786
A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an authenticated, remote malicious user to conduct SQL injection attacks on an affected system. This vulnerability is ...
Cisco Unified Communications Manager Im And Presence Service
8.6
CVSSv3
CVE-2019-1845
A vulnerability in the authentication service of the Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, Cisco TelePresence Video Communication Server (VCS), and Cisco Expressway Series could allow an unauthenticated, remote malicious user to c...
Cisco Unified Communications Manager Im And Presence Service 11.5(1)
Cisco Telepresence Video Communication Server
NA
CVE-2014-0729
SQL injection vulnerability in the Enterprise Mobility Application (EMApp) interface in Cisco Unified Communications Manager (UCM) allows remote malicious users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCum05302.
Cisco Unified Communications Manager
4.9
CVSSv3
CVE-2019-12710
A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an authenticated, remote malicious user to impact the confidentiality of an affected system by executing arbitr...
Cisco Unified Communications Manager 11.5(1.10000.6)
Cisco Unified Communications Manager 10.5(2.10000.5)
Cisco Unified Communications Manager 12.0(1.10000.10)
Cisco Unified Communications Manager 12.5(1.10000.22)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »