Cisco

Unified Contact Center Express

26 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2023-20232

  • EPSS 0.1%
  • Published 16.08.2023 22:15:12
  • Last modified 21.11.2024 07:40:57

A vulnerability in the Tomcat implementation for Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to cause a web cache poisoning attack on an affected device. This vulnerability is due to improper...

5.4

CVE-2023-20096

  • EPSS 0.13%
  • Published 05.04.2023 19:15:07
  • Last modified 21.11.2024 07:40:32

A vulnerability in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack. This vulnerability is due to insufficient...

4.3

CVE-2023-20062

  • EPSS 0.12%
  • Published 03.03.2023 16:15:10
  • Last modified 21.11.2024 07:40:27

Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote attacker to collect sensitive information or perform a server-side request forgery (SSRF) attack on an affected system. Cisco plans to release software...

6.5

CVE-2023-20061

  • EPSS 0.12%
  • Published 03.03.2023 16:15:09
  • Last modified 21.11.2024 07:40:27

Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote attacker to collect sensitive information or perform a server-side request forgery (SSRF) attack on an affected system. Cisco plans to release software...

6.1

CVE-2023-20058

  • EPSS 0.18%
  • Published 20.01.2023 07:15:17
  • Last modified 21.11.2024 07:40:27

A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface. This vulnerability...

9.6

CVE-2022-20658

  • EPSS 0.26%
  • Published 14.01.2022 05:15:11
  • Last modified 21.11.2024 06:43:15

A vulnerability in the web-based management interface of Cisco Unified Contact Center Management Portal (Unified CCMP) and Cisco Unified Contact Center Domain Manager (Unified CCDM) could allow an authenticated, remote attacker to elevate their privi...

10

CVE-2021-44228

Warning Exploit
  • EPSS 94.36%
  • Published 10.12.2021 10:15:09
  • Last modified 08.08.2025 18:52:00

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...

6.1

CVE-2021-1463

  • EPSS 0.34%
  • Published 08.04.2021 04:15:13
  • Last modified 31.07.2025 15:03:24

A vulnerability in the web-based management interface of Cisco Unified Intelligence Center Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability exi...

9

CVE-2019-1888

  • EPSS 1.46%
  • Published 23.09.2020 01:15:14
  • Last modified 21.11.2024 04:37:37

A vulnerability in the Administration Web Interface of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to upload arbitrary files and execute commands on the underlying operating system. To exploit this...

7.1

CVE-2020-3267

  • EPSS 0.33%
  • Published 03.06.2020 18:15:22
  • Last modified 21.11.2024 05:30:41

A vulnerability in the API subsystem of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to change the availability state of any agent. The vulnerability is due to insufficient authorization enforcement...