Cisco

Unified Contact Center Express

31 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.6

CVE-2022-20658

  • EPSS 0.26%
  • Veröffentlicht 14.01.2022 05:15:11
  • Zuletzt bearbeitet 21.11.2024 06:43:15

A vulnerability in the web-based management interface of Cisco Unified Contact Center Management Portal (Unified CCMP) and Cisco Unified Contact Center Domain Manager (Unified CCDM) could allow an authenticated, remote attacker to elevate their privi...

10

CVE-2021-44228

Warnung Exploit
  • EPSS 94.36%
  • Veröffentlicht 10.12.2021 10:15:09
  • Zuletzt bearbeitet 27.10.2025 17:40:33

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...

6.1

CVE-2021-1463

  • EPSS 0.34%
  • Veröffentlicht 08.04.2021 04:15:13
  • Zuletzt bearbeitet 31.07.2025 15:03:24

A vulnerability in the web-based management interface of Cisco Unified Intelligence Center Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability exi...

9

CVE-2019-1888

  • EPSS 1.46%
  • Veröffentlicht 23.09.2020 01:15:14
  • Zuletzt bearbeitet 21.11.2024 04:37:37

A vulnerability in the Administration Web Interface of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to upload arbitrary files and execute commands on the underlying operating system. To exploit this...

7.1

CVE-2020-3267

  • EPSS 0.33%
  • Veröffentlicht 03.06.2020 18:15:22
  • Zuletzt bearbeitet 21.11.2024 05:30:41

A vulnerability in the API subsystem of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to change the availability state of any agent. The vulnerability is due to insufficient authorization enforcement...

10

CVE-2020-3280

  • EPSS 6.35%
  • Veröffentlicht 22.05.2020 06:15:10
  • Zuletzt bearbeitet 21.11.2024 05:30:42

A vulnerability in the Java Remote Management Interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to insecure deseri...

7.5

CVE-2020-3177

  • EPSS 0.95%
  • Veröffentlicht 15.04.2020 21:15:35
  • Zuletzt bearbeitet 21.11.2024 05:30:29

A vulnerability in the Tool for Auto-Registered Phones Support (TAPS) of Cisco Unified Communications Manager (UCM) and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to conduct d...

6.1

CVE-2019-15278

  • EPSS 0.7%
  • Veröffentlicht 26.01.2020 05:15:11
  • Zuletzt bearbeitet 21.11.2024 04:28:21

A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to bypass authorization and access sensitive information related to the device. The vulnerability exists because the software fails...

6.1

CVE-2019-15259

  • EPSS 0.21%
  • Veröffentlicht 02.10.2019 19:15:15
  • Zuletzt bearbeitet 21.11.2024 04:28:18

A vulnerability in Cisco Unified Contact Center Express (UCCX) Software could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack. The vulnerability is due to insufficient input validation of some parameters that ar...

7.5

CVE-2019-12633

  • EPSS 0.51%
  • Veröffentlicht 05.09.2019 02:15:12
  • Zuletzt bearbeitet 21.11.2024 04:23:13

A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. The vulnerability is due to ...