Cisco

Unified Communications Domain Manager

33 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2019-15968

  • EPSS 0.29%
  • Veröffentlicht 26.11.2019 04:15:11
  • Zuletzt bearbeitet 21.11.2024 04:29:50

A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager (Unified CDM) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management...

6.1

CVE-2018-0386

  • EPSS 0.31%
  • Veröffentlicht 15.08.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:38:07

A vulnerability in Cisco Unified Communications Domain Manager Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on an affected system. The vulnerability is due to improper validation of input tha...

8.8

CVE-2018-0364

  • EPSS 0.32%
  • Veröffentlicht 21.06.2018 11:29:01
  • Zuletzt bearbeitet 21.11.2024 03:38:04

A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected de...

9.8

CVE-2018-0124

  • EPSS 1.1%
  • Veröffentlicht 22.02.2018 00:29:00
  • Zuletzt bearbeitet 21.11.2024 03:37:34

A vulnerability in Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to bypass security protections, gain elevated privileges, and execute arbitrary code. The vulnerability is due to insecure key generation d...

6.1

CVE-2016-1354

  • EPSS 0.25%
  • Veröffentlicht 03.03.2016 15:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in Cisco Unified Communications Domain Manager (UCDM) 8.x before 8.1.1 allows remote attackers to inject arbitrary web script or HTML via crafted markup data, aka Bug ID CSCud41176.

4

CVE-2015-6422

  • EPSS 0.46%
  • Veröffentlicht 14.12.2015 03:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The self-service application in Cisco Unified Communications Domain Manager (CUCDM) 10.6(1) allows remote authenticated users to cause a denial of service (subapplication outage) via malformed requests, aka Bug ID CSCuu10981.

4.3

CVE-2015-6352

  • EPSS 0.28%
  • Veröffentlicht 30.10.2015 10:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco Unified Communications Domain Manager before 10.6(1) provides different error messages for pathname access attempts depending on whether the pathname exists, which allows remote attackers to map a filesystem via a series of requests, aka Bug ID...

5

CVE-2015-4196

  • EPSS 0.24%
  • Veröffentlicht 04.07.2015 10:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Platform Software before 4.4.5 in Cisco Unified Communications Domain Manager (CDM) 8.x has a hardcoded password for a privileged account, which allows remote attackers to obtain root access by leveraging knowledge of this password and entering it in...

5

CVE-2015-4229

  • EPSS 0.43%
  • Veröffentlicht 30.06.2015 10:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The web framework in Cisco Unified Communications Domain Manager 8.1(4)ER1 allows remote attackers to obtain sensitive information by visiting a bvsmweb URL, aka Bug ID CSCuq22589.

5

CVE-2015-0591

  • EPSS 0.85%
  • Veröffentlicht 15.01.2015 22:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco Unified Communications Domain Manager (UCDM) 10 allows remote attackers to cause a denial of service (daemon hang and GUI outage) via a flood of malformed TCP packets, aka Bug ID CSCur44177.