Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco jabber vulnerabilities and exploits
(subscribe to this query)
4
CVSSv3
CVE-2017-12361
A vulnerability in Cisco Jabber for Windows could allow an unauthenticated, local malicious user to access sensitive communications made by the Jabber client. An attacker could exploit this vulnerability to gain information to conduct additional attacks. The vulnerability is due ...
Cisco Jabber 11.8\\(3\\)
Cisco Jabber 11.8\\(0\\)
Cisco Jabber 11.8\\(1\\)
Cisco Jabber 11.8\\(2\\)
6.1
CVSSv3
CVE-2016-1311
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Jabber Guest Server 10.6(8) allows remote malicious users to inject arbitrary web script or HTML via the host tag parameter, aka Bug ID CSCuy08224.
Cisco Jabber Guest 10.6.8
NA
CVE-2013-1228
Cisco Jabber on Windows does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and modify the client-server data stream via a crafted certificate, aka Bug ID CSCug30280.
Cisco Jabber -
9.9
CVSSv3
CVE-2020-26085
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an malicious user to execute arbitrary programs on the underlying operating system (OS) with elevated privileges or gain access to sensitive information. For more i...
Cisco Jabber
1 Article
6.1
CVSSv3
CVE-2018-0199
A vulnerability in Cisco Jabber Client Framework (JCF) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of an affected device. The vulnerability is due to improper neutralization of script in attributes in a web p...
Cisco Jabber 11.9
Cisco Jabber 11.9\\(0\\)
Cisco Jabber -
5.4
CVSSv3
CVE-2018-0201
A vulnerability in Cisco Jabber Client Framework (JCF) could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of an affected device. The vulnerability is due to improper neutralization of input during web page generation....
Cisco Jabber 11.9
Cisco Jabber 11.9\\(.0\\)
Cisco Jabber -
NA
CVE-2014-8024
The API in the Guest Server in Cisco Jabber, when the HTML5 CORS feature is used, allows remote malicious users to obtain sensitive information by sniffing the network during an HTTP (1) GET or (2) POST request, aka Bug ID CSCus19789.
Cisco Jabber Guest
NA
CVE-2014-8026
Cross-site scripting (XSS) vulnerability in the Guest Server in Cisco Jabber allows remote malicious users to inject arbitrary web script or HTML via a (1) GET or (2) POST parameter, aka Bug ID CSCus08074.
Cisco Jabber Guest
NA
CVE-2014-8025
The API in the Guest Server in Cisco Jabber, when HTML5 is used, allows remote malicious users to obtain sensitive information by sniffing the network during an HTTP (1) GET or (2) POST response, aka Bug ID CSCus19801.
Cisco Jabber Guest
NA
CVE-2013-1187
The Connection Manager in Cisco Jabber Extensible Communications Platform (aka Jabber XCP) does not properly validate login data, which allows remote malicious users to cause a denial of service (service crash) by sending a series of malformed login packets, aka Bug ID CSCts76762...
Cisco Jabber Extensible Communications Platform -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »