Vulnerabilities fixed in Cisco Unified Communications Manager

🗓️ 06 May 2021 00:00:00Reported by NCSCType

Fixed vulnerabilities in Cisco Unified Communications Manager: Denial of service via Java management extensions exposure and authenticated SQL injection risk.

Reporter	Title	Published	Views	Family All 29
BDU FSTEC	The vulnerability of the Java Management Extensions (JMX) component of the Cisco Hosted Collaboration Mediation Fulfillment software allows a attacker to trigger a service failure.	19 May 202100:00	–	bdu_fstec
BDU FSTEC	The vulnerability in the web interface of the Cisco Unified Communications Manager IM & Presence Service allows a perpetrator to execute arbitrary SQL queries.	19 May 202100:00	–	bdu_fstec
BDU FSTEC	The vulnerability in the web interface of the Cisco Unified Communications Manager IM & Presence Service allows a perpetrator to execute arbitrary SQL commands and gain unauthorized access to modify data.	15 Jun 202100:00	–	bdu_fstec
Cisco	Cisco Hosted Collaboration Mediation Fulfillment Denial of Service Vulnerability	5 May 202116:00	–	cisco
CNNVD	Cisco Unified Communications Manager 安全漏洞	5 May 202100:00	–	cnnvd
CNNVD	思科 Cisco Unified Communications Manager SQL注入漏洞	6 May 202100:00	–	cnnvd
CNNVD	思科 Cisco Unified Communications Manager SQL注入漏洞	6 May 202100:00	–	cnnvd
CNVD	Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition Denial of Service Vulnerabilities	6 May 202100:00	–	cnvd
CVE	CVE-2021-1363	6 May 202112:42	–	cve
CVE	CVE-2021-1365	6 May 202112:42	–	cve

06 May 2021 00:00Current

7.9High risk

Vulners AI Score7.9

CVSS 26.8

CVSS 3.17.1 - 8.1

EPSS0.01081

SSVC