CVE-2025-20278
- EPSS 0.02%
- Published 04.06.2025 16:18:20
- Last modified 31.07.2025 15:02:05
A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device as the root user. This vulnerability i...
CVE-2025-20112
- EPSS 0.02%
- Published 21.05.2025 16:19:24
- Last modified 21.05.2025 20:24:58
A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileges to root on an affected device. This vulnerability is due to excessive permissions tha...
- EPSS 94.36%
- Published 10.12.2021 10:15:09
- Last modified 08.08.2025 18:52:00
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...
CVE-2021-1575
- EPSS 0.32%
- Published 08.07.2021 19:15:08
- Last modified 21.11.2024 05:44:39
A vulnerability in the web-based management interface of Cisco Virtualized Voice Browser could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because...
CVE-2017-6779
- EPSS 1.28%
- Published 07.06.2018 12:29:00
- Last modified 31.07.2025 15:03:24
Multiple Cisco products are affected by a vulnerability in local file management for certain system log files of Cisco collaboration products that could allow an unauthenticated, remote attacker to cause high disk utilization, resulting in a denial o...