Lucene search
K

7 matches found

CVE
CVE
added 2026/03/11 4:31 p.m.18 views

CVE-2026-20117

CVE-2026-20117 affects Cisco Unified Contact Center Express (Unified CCX) via the web-based management interface. The root cause is insufficient validation of user-supplied input, enabling an unauthenticated, remote attacker to perform cross-site scripting (XSS) by injecting malicious code into c...

6.1CVSS6AI score0.00207EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2026/03/11 4:0 p.m.22 views

Multiple Cisco Contact Center Products Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Finesse, Cisco Packaged Contact Center Enterprise Packaged CCE, Cisco Unified Contact Center Enterprise Unified CCE, Cisco Unified Contact Center Express Unified CCX, and Cisco Unified Intelligence Center could allow an...

6.1CVSS6AI score0.00207EPSS
Exploits0References1
NVD
NVD
added 2026/01/21 5:16 p.m.10 views

CVE-2026-20055

Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise Packaged CCE and Cisco Unified Contact Center Enterprise Unified CCE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-base...

4.8CVSS0.00173EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/21 4:26 p.m.19 views

CVE-2026-20055 Cisco Packaged Contact Center Enterprise & Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerability

Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise Packaged CCE and Cisco Unified Contact Center Enterprise Unified CCE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-base...

4.8CVSS0.00173EPSS
Exploits0References1
OSV
OSV
added 2025/11/05 5:15 p.m.2 views

CVE-2025-20375

A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to upload and execute arbitrary files. This vulnerability is due to an insufficient input validation associated to specific UI features. An attacker could exploit this vulnerability by uploading a...

7.2CVSS6AI score
Exploits0References1
Cvelist
Cvelist
added 2025/11/05 4:31 p.m.10 views

CVE-2025-20358 Cisco Unified Contact Center Express Editor Authentication Bypass Vulnerability

A vulnerability in the Contact Center Express CCX Editor application of Cisco Unified CCX could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative permissions pertaining to script creation and execution. This vulnerability is due to improper authenticatio...

9.4CVSS0.00931EPSS
Exploits0References1
CNVD
CNVD
added 2017/05/08 12:0 a.m.6 views

Cisco Unified Contact Center Enterprise Information Disclosure Vulnerability (CNVD-2017-08798)

Cisco Unified Contact Center Enterprise UCCE is a set of IP-based contact center components from Cisco. It provides intelligent contact routing, call processing, network-to-desktop computer telephony integration CTI, and multi-channel contact management capabilities over an IP infrastructure. A...

5.3CVSS6.8AI score0.02301EPSS
Exploits0References1
Rows per page
Query Builder