Cisco

Emergency Responder

22 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.1

CVE-2025-20112

  • EPSS 0.02%
  • Published 21.05.2025 16:19:24
  • Last modified 21.05.2025 20:24:58

A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileges to root on an affected device. This vulnerability is due to excessive permissions tha...

8.8

CVE-2024-20352

  • EPSS 0.27%
  • Published 03.04.2024 17:15:49
  • Last modified 07.05.2025 16:15:35

A vulnerability in Cisco Emergency Responder could allow an authenticated, remote attacker to conduct a directory traversal attack, which could allow the attacker to perform arbitrary actions on an affected device. This vulnerability is due to insuff...

6.5

CVE-2024-20347

  • EPSS 0.16%
  • Published 03.04.2024 17:15:49
  • Last modified 11.04.2025 15:47:24

A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to conduct a CSRF attack, which could allow the attacker to perform arbitrary actions on an affected device. This vulnerability is due to insufficient protec...

7.5

CVE-2023-20259

  • EPSS 0.14%
  • Published 04.10.2023 17:15:09
  • Last modified 21.11.2024 07:41:00

A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow an unauthenticated, remote attacker to cause high CPU utilization, which could impact access to the web-based management interface and cause delays with ...

9.8

CVE-2023-20101

  • EPSS 0.72%
  • Published 04.10.2023 17:15:09
  • Last modified 21.11.2024 07:40:33

A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to log in to an affected device using the root account, which has default, static credentials that cannot be changed or deleted. This vulnerability is due...

7.2

CVE-2023-20266

  • EPSS 0.04%
  • Published 30.08.2023 17:15:08
  • Last modified 21.11.2024 07:41:02

A vulnerability in Cisco Emergency Responder, Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unity Connection could allow an authenticated, remote attacke...

10

CVE-2021-44228

Warning Exploit
  • EPSS 94.36%
  • Published 10.12.2021 10:15:09
  • Last modified 08.08.2025 18:52:00

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...

6.5

CVE-2021-1226

  • EPSS 0.23%
  • Published 13.01.2021 22:15:20
  • Last modified 21.11.2024 05:43:52

A vulnerability in the audit logging component of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, Cisco Unity Connection, Cisco Eme...

4.8

CVE-2019-16025

  • EPSS 0.15%
  • Published 23.09.2020 01:15:14
  • Last modified 21.11.2024 04:29:57

A vulnerability in the web framework of Cisco Emergency Responder could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface. The vulnerability is due to insuffici...

5.4

CVE-2018-15403

  • EPSS 0.18%
  • Published 05.10.2018 14:29:08
  • Last modified 21.11.2024 03:50:42

A vulnerability in the web interface of Cisco Emergency Responder, Cisco Unified Communications Manager, Cisco Unified Communications Manager IM & Presence Service, and Cisco Unity Connection could allow an authenticated, remote attacker to redirect ...