Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified communications manager vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2019-1854
A vulnerability in the management web interface of Cisco Expressway Series could allow an authenticated, remote malicious user to perform a directory traversal attack against an affected device. The vulnerability is due to insufficient input validation on the web interface. An at...
Cisco Telepresence Video Communication Server X8.11.4
7.8
CVSSv2
CVE-2019-1837
A vulnerability in the User Data Services (UDS) API of Cisco Unified Communications Manager (Unified CM) could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on the management GUI. The vulnerability is due to improper validation of in...
Cisco Unified Communications Manager 12.5\\(1.10000.22\\)
Cisco Unified Communications Manager 11.5\\(1.10000.6\\)
Cisco Unified Communications Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)
4
CVSSv2
CVE-2018-0474
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an authenticated, remote malicious user to view digest credentials in clear text. The vulnerability is due to the incorrect inclusion of saved passwords in configuration page...
Cisco Unified Communications Manager 10.5\\(2.14076.1\\)
7.5
CVSSv2
CVE-2018-15441
A vulnerability in the web framework code of Cisco Prime License Manager (PLM) could allow an unauthenticated, remote malicious user to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation of user-supplied input in SQL queries. An attacker could ...
Cisco Prime License Manager
Cisco Prime License Manager 11.5\\(1\\)
4.9
CVSSv2
CVE-2018-15403
A vulnerability in the web interface of Cisco Emergency Responder, Cisco Unified Communications Manager, Cisco Unified Communications Manager IM & Presence Service, and Cisco Unity Connection could allow an authenticated, remote malicious user to redirect a user to a maliciou...
Cisco Unified Communications Manager 11.0\\(1.10000.10\\)
Cisco Unified Communications Manager 11.5\\(1.10000.6\\)
Cisco Unified Communications Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)
Cisco Unity Connection 9.1\\(1\\)es23
Cisco Unified Communications Manager Im And Presence Service 10.5\\(2\\)
Cisco Unified Communications Manager Im And Presence Service 10.5\\(1\\)
Cisco Unified Communications Manager Im And Presence Service 12.0\\(1\\)
Cisco Unified Communications Manager Im And Presence Service 12.5\\(1\\)
Cisco Emergency Responder 11.5\\(4.59000.1\\)
Cisco Emergency Responder 12.5\\(0.98000.110\\)
Cisco Emergency Responder 12.0\\(1.40000.3\\)
9.3
CVSSv2
CVE-2018-11776
Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or...
Apache Struts
3 EDB exploits
45 Github repositories
3 Articles
4.3
CVSSv2
CVE-2018-0386
A vulnerability in Cisco Unified Communications Domain Manager Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack on an affected system. The vulnerability is due to improper validation of input that is passed to the affec...
Cisco Hosted Collaboration Solution 11.5\\(1\\)
Cisco Unified Communications Domain Manager -
5
CVSSv2
CVE-2018-0409
A vulnerability in the XCP Router service of the Cisco Unified Communications Manager IM & Presence Service (CUCM IM&P) and the Cisco TelePresence Video Communication Server (VCS) and Expressway could allow an unauthenticated, remote malicious user to cause a temporary se...
Cisco Telepresence Video Communication Server X8.1
Cisco Telepresence Video Communication Server X8.10
Cisco Telepresence Video Communication Server X8.10.4
Cisco Telepresence Video Communication Server X8.2.2
Cisco Telepresence Video Communication Server X7.0.1
Cisco Telepresence Video Communication Server X8.6
Cisco Telepresence Video Communication Server X8.8
Cisco Telepresence Video Communication Server X8.9
Cisco Telepresence Video Communication Server X7.2.4
Cisco Telepresence Video Communication Server X8.5
Cisco Telepresence Video Communication Server X8.7
Cisco Unified Communications Manager Im And Presence Service 11.5
Cisco Unified Communications Manager Im And Presence Service 11.5\\(1\\)
5.4
CVSSv2
CVE-2018-3615
Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis.
Intel Core I3 6006u
Intel Core I3 6098p
Intel Core I3 6102e
Intel Core I3 6157u
Intel Core I5 661
Intel Core I5 670
Intel Core I5 6300u
Intel Core I5 6350hq
Intel Core I5 6442eq
Intel Core I5 6500
Intel Core I5 6500t
Intel Core I7 610e
Intel Core I7 620le
Intel Core I7 640um
Intel Core I7 660lm
Intel Core I3 6100h
Intel Core I3 6100t
Intel Core I3 6320
Intel Core I5 650
Intel Core I3 6100te
Intel Core I3 6100u
Intel Core I5 655k
2 Articles
4.3
CVSSv2
CVE-2018-0411
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device....
Cisco Unified Communications Manager 11.0\\(1.10000.10\\)
Cisco Unified Communications Manager 11.5\\(1.10000.6\\)
Cisco Unified Communications Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »