Vulnerabilities (CVE)

Vendor filter

Cisco Subscribe

Product filter

Unified Communications Manager Subscribe

Filter

190 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-12707 1 Cisco 3 Unified Communications Manager, Unified Communications Manager Im And Presence Service, Unity Connection 2019-10-11 4.3
A vulnerability in the web-based interface of multiple Cisco Unified Communications products could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface of the affected...
CVE-2019-1915 1 Cisco 3 Unified Communications Manager, Unified Communications Manager Im And Presence Service, Unity Connection 2019-10-09 4.3
A vulnerability in the web-based interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition (SME), Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, and...
CVE-2019-1887 1 Cisco 1 Unified Communications Manager 2019-10-09 5.0
A vulnerability in the Session Initiation Protocol (SIP) protocol implementation of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to...
CVE-2019-1837 1 Cisco 1 Unified Communications Manager 2019-10-09 7.8
A vulnerability in the User Data Services (UDS) API of Cisco Unified Communications Manager (Unified CM) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the management GUI. The vulnerability is due...
CVE-2019-15272 1 Cisco 1 Unified Communications Manager 2019-10-09 6.4
A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to bypass security restrictions. The...
CVE-2019-12716 1 Cisco 1 Unified Communications Manager 2019-10-09 4.3
A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS)...
CVE-2019-12715 1 Cisco 1 Unified Communications Manager 2019-10-09 4.3
A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS)...
CVE-2019-12711 1 Cisco 1 Unified Communications Manager 2019-10-09 6.4
A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to access sensitive information or cause...
CVE-2019-12710 1 Cisco 1 Unified Communications Manager 2019-10-09 4.0
A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an authenticated, remote attacker to impact the confidentiality of an...
CVE-2018-15403 1 Cisco 4 Emergency Responder, Unified Communications Manager, Unified Communications Manager Im And Presence Service and 1 more 2019-10-09 4.9
A vulnerability in the web interface of Cisco Emergency Responder, Cisco Unified Communications Manager, Cisco Unified Communications Manager IM & Presence Service, and Cisco Unity Connection could allow an authenticated, remote attacker to...
CVE-2018-0474 1 Cisco 1 Unified Communications Manager 2019-10-09 4.0
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an authenticated, remote attacker to view digest credentials in clear text. The vulnerability is due to the incorrect inclusion of saved...
CVE-2018-0411 1 Cisco 1 Unified Communications Manager 2019-10-09 4.3
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management...
CVE-2018-0355 1 Cisco 1 Unified Communications Manager 2019-10-09 4.3
A vulnerability in the web UI of Cisco Unified Communications Manager (Unified CM) could allow an unauthenticated, remote attacker to conduct a cross-frame scripting (XFS) attack against the user of the web UI of an affected system. The...
CVE-2018-0340 1 Cisco 1 Unified Communications Manager 2019-10-09 3.5
A vulnerability in the web framework of the Cisco Unified Communications Manager (Unified CM) software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web interface of the...
CVE-2018-0328 1 Cisco 1 Unified Communications Manager 2019-10-09 4.3
A vulnerability in the web framework of Cisco Unified Communications Manager and Cisco Unified Presence could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface of an...
CVE-2018-0267 1 Cisco 1 Unified Communications Manager 2019-10-09 2.1
A vulnerability in the web framework of Cisco Unified Communications Manager could allow an authenticated, local attacker to view sensitive data that should be restricted. This could include LDAP credentials. The vulnerability is due to...
CVE-2018-0266 1 Cisco 1 Unified Communications Manager 2019-10-09 4.0
A vulnerability in the web framework of Cisco Unified Communications Manager could allow an authenticated, remote attacker to view sensitive data. The vulnerability is due to insufficient protection of database tables over the web interface. An...
CVE-2018-0206 1 Cisco 1 Unified Communications Manager 2019-10-09 4.3
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management...
CVE-2018-0198 1 Cisco 1 Unified Communications Manager 2019-10-09 5.0
A vulnerability in the web framework of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to view sensitive data. The vulnerability is due to insufficient protection of database tables. An attacker could exploit...
CVE-2018-0135 1 Cisco 1 Unified Communications Manager 2019-10-09 4.0
A vulnerability in Cisco Unified Communications Manager could allow an authenticated, remote attacker to access sensitive information on an affected system. The vulnerability exists because the affected software improperly validates user-supplied...