Cisco

Unified Communications Domain Manager

33 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2014-3281

  • EPSS 0.26%
  • Veröffentlicht 08.06.2014 16:55:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which allows remote attackers to obtain potentially sensitive user information by visiting an unspecified BVSMWeb web page, aka...

5

CVE-2014-3278

  • EPSS 0.26%
  • Veröffentlicht 08.06.2014 16:55:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which allows remote attackers to enumerate accounts by visiting an unspecified BVSMWeb web page, aka Bug IDs CSCun39619 and CSC...

4

CVE-2014-3280

  • EPSS 0.39%
  • Veröffentlicht 03.06.2014 04:44:49
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authenticated users to obtain potentially sensitive user information by visiting an uns...

5.8

CVE-2014-3283

  • EPSS 0.55%
  • Veröffentlicht 29.05.2014 17:55:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Open redirect vulnerability in Self-Care Client Portal applications in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phi...

4

CVE-2014-3282

  • EPSS 0.39%
  • Veröffentlicht 29.05.2014 17:55:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authenticated users to obtain sensitive number-translation in...

5

CVE-2014-3279

  • EPSS 0.68%
  • Veröffentlicht 29.05.2014 17:55:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote attackers to enumerate account names via a crafted URL, aka B...

4

CVE-2014-3277

  • EPSS 0.36%
  • Veröffentlicht 29.05.2014 17:55:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authenticated users to obtain sensitive user and group inform...

5.5

CVE-2013-5517

  • EPSS 0.36%
  • Veröffentlicht 02.10.2013 22:55:23
  • Zuletzt bearbeitet 11.04.2025 00:51:21

SQL injection vulnerability in the web framework in Cisco Unified Communications Domain Manager allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuh96567.

6.8

CVE-2013-3418

  • EPSS 0.36%
  • Veröffentlicht 11.07.2013 22:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cisco Unified Communications Domain Manager does not properly allocate memory for GET and POST requests, which allows remote authenticated users to cause a denial of service (memory consumption and process crash) via crafted requests to the managemen...

4.3

CVE-2013-1132

  • EPSS 0.26%
  • Veröffentlicht 10.07.2013 21:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Communications Domain Manager allow remote attackers to inject arbitrary web script or HTML via vectors involving the (1) IptAccountMgmt, (2) IptFeatureConfigTemplateMgmt, (3) IptFe...