Cisco Unified Communications Domain Manager Cross-Site Request Forgery Vulnerability

Cisco Unified Communications Domain Manager CUCDM is the United States Cisco Cisco company developed a dedicated unified communications solutions in the call processing components. The component has scalable, distributable, highly available enterprise voice-over-IP call processing capabilities. A...

CVE-2018-0124

A vulnerability in Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to bypass security protections, gain elevated privileges, and execute arbitrary code. The vulnerability is due to insecure key generation during application configuration. An attacker...

CVE-2018-0124

A vulnerability in Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to bypass security protections, gain elevated privileges, and execute arbitrary code. The vulnerability is due to insecure key generation during application configuration. An attacker...

CVE-2017-6670

A vulnerability in the web-based GUI of Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to redirect a user to a malicious web page, aka an Open Redirect issue. More Information: CSCvc54813. Known Affected Releases: 8.17ER1...

Multiple SQL Injection Vulnerabilities in Cisco Unified Communications Domain Manager

Cisco Unified Communications Manager is a call processing component of a Cisco IP telephony solution. Multiple SQL injection vulnerabilities exist in Cisco Unified Communications Domain Manager. A failure of the program to properly filter user-supplied data prior to an SQL query could allow an...

CVE-2016-1314

Cross-site scripting XSS vulnerability in Cisco Unified Communications Domain Manager CDM 8.11 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCux80760...

Cisco Unified Communications Domain Manager Denial of Service Vulnerability (CNVD-2015-08386)

Cisco Unified Communications Domain Manager is an enterprise-class IP telephony call-processing system from the American company Cisco Cisco. A denial of service vulnerability exists in Cisco Unified Communications Domain Manager 10.6. It allows an authenticated remote user to cause a denial of...

Cisco CUCDM SQL Injection Vulnerability

Cisco Unified Communications Manager is an enterprise-class IP telephony call processing system. A sql injection vulnerability exists in the graphical administration feature of Cisco Unified Communications Domain Manager Application Software due to a failure to effectively validate user-supplied...