Cisco

Unified Communications Manager Im And Presence Service

33 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2025-20330

  • EPSS 0.05%
  • Veröffentlicht 03.09.2025 17:40:43
  • Zuletzt bearbeitet 10.09.2025 17:36:51

A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a use...

6.7

CVE-2025-20278

  • EPSS 0.02%
  • Veröffentlicht 04.06.2025 16:18:20
  • Zuletzt bearbeitet 31.07.2025 15:02:05

A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device as the root user. This vulnerability i...

5.1

CVE-2025-20112

  • EPSS 0.02%
  • Veröffentlicht 21.05.2025 16:19:24
  • Zuletzt bearbeitet 21.05.2025 20:24:58

A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileges to root on an affected device. This vulnerability is due to excessive permissions tha...

6.1

CVE-2020-3532

  • EPSS 0.09%
  • Veröffentlicht 18.11.2024 16:15:07
  • Zuletzt bearbeitet 18.11.2024 17:11:17

A vulnerability in the web-based management interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, and Cisco&n...

6.5

CVE-2024-20457

  • EPSS 0.15%
  • Veröffentlicht 06.11.2024 17:15:15
  • Zuletzt bearbeitet 07.08.2025 19:11:21

A vulnerability in the logging component of Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an authenticated, remote attacker to view sensitive information in clear text on an affected system. This ...

6.1

CVE-2024-20310

  • EPSS 0.16%
  • Veröffentlicht 03.04.2024 17:15:48
  • Zuletzt bearbeitet 01.08.2025 18:52:58

A vulnerability in the web-based interface of Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against an authenticated user of...

10

CVE-2024-20253

  • EPSS 3.03%
  • Veröffentlicht 26.01.2024 18:15:10
  • Zuletzt bearbeitet 29.05.2025 16:15:33

A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. This vulnerability is due to the improper processing of us...

6.1

CVE-2023-20242

  • EPSS 0.12%
  • Veröffentlicht 16.08.2023 21:15:09
  • Zuletzt bearbeitet 21.11.2024 07:40:58

A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified CM Session Management Edition (Unified CM SME), and Cisco Unified Communications Manager IM & Presence Service (Unified CM I...

7.5

CVE-2023-20108

  • EPSS 0.24%
  • Veröffentlicht 28.06.2023 15:15:09
  • Zuletzt bearbeitet 21.11.2024 07:40:34

A vulnerability in the XCP Authentication Service of the Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an unauthenticated, remote attacker to cause a temporary service outage for all Cisco Unified CM...

9

CVE-2022-20859

  • EPSS 1.64%
  • Veröffentlicht 06.07.2022 21:15:11
  • Zuletzt bearbeitet 21.11.2024 06:43:42

A vulnerability in the Disaster Recovery framework of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P), and Cisco Unity Connection could allow an authenticated, re...