Cisco

Unified Communications Domain Manager

33 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2014-3281

  • EPSS 0.26%
  • Published 08.06.2014 16:55:02
  • Last modified 12.04.2025 10:46:40

The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which allows remote attackers to obtain potentially sensitive user information by visiting an unspecified BVSMWeb web page, aka...

5

CVE-2014-3278

  • EPSS 0.26%
  • Published 08.06.2014 16:55:02
  • Last modified 12.04.2025 10:46:40

The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which allows remote attackers to enumerate accounts by visiting an unspecified BVSMWeb web page, aka Bug IDs CSCun39619 and CSC...

4

CVE-2014-3280

  • EPSS 0.39%
  • Published 03.06.2014 04:44:49
  • Last modified 12.04.2025 10:46:40

The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authenticated users to obtain potentially sensitive user information by visiting an uns...

5.8

CVE-2014-3283

  • EPSS 0.55%
  • Published 29.05.2014 17:55:05
  • Last modified 12.04.2025 10:46:40

Open redirect vulnerability in Self-Care Client Portal applications in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phi...

4

CVE-2014-3282

  • EPSS 0.39%
  • Published 29.05.2014 17:55:05
  • Last modified 12.04.2025 10:46:40

The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authenticated users to obtain sensitive number-translation in...

5

CVE-2014-3279

  • EPSS 0.68%
  • Published 29.05.2014 17:55:05
  • Last modified 12.04.2025 10:46:40

The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote attackers to enumerate account names via a crafted URL, aka B...

4

CVE-2014-3277

  • EPSS 0.36%
  • Published 29.05.2014 17:55:05
  • Last modified 12.04.2025 10:46:40

The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authenticated users to obtain sensitive user and group inform...

5.5

CVE-2013-5517

  • EPSS 0.36%
  • Published 02.10.2013 22:55:23
  • Last modified 11.04.2025 00:51:21

SQL injection vulnerability in the web framework in Cisco Unified Communications Domain Manager allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuh96567.

6.8

CVE-2013-3418

  • EPSS 0.36%
  • Published 11.07.2013 22:55:00
  • Last modified 11.04.2025 00:51:21

Cisco Unified Communications Domain Manager does not properly allocate memory for GET and POST requests, which allows remote authenticated users to cause a denial of service (memory consumption and process crash) via crafted requests to the managemen...

4.3

CVE-2013-1132

  • EPSS 0.26%
  • Published 10.07.2013 21:55:00
  • Last modified 11.04.2025 00:51:21

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Communications Domain Manager allow remote attackers to inject arbitrary web script or HTML via vectors involving the (1) IptAccountMgmt, (2) IptFeatureConfigTemplateMgmt, (3) IptFe...