Security Bulletin: SPSS Collaboration and Deployment Services is affected by vulnerabilities in Picomatch (CVE-2026-33671, CVE-2026-33672)

Summary SPSS Collaboration and Deployment Services is affected by vulnerabilities in Picomatch CVE-2026-33671, CVE-2026-33672. This has been addressed in the remediation section. Vulnerability Details CVEID:CVE-2026-33671 DESCRIPTION: Picomatch is a glob matcher written JavaScript. Versions prior...

Security Bulletin: SPSS Collaboration and Deployment Services is affected by vulnerabilities in js-yaml, minimatch, and react-router

Summary SPSS Collaboration and Deployment Services is affected by vulnerabilities in js-yaml CVE-2025-64718, minimatch CVE-2026-26996, CVE-2026-27903, CVE-2026-27904, react-router CVE-2025-59057, CVE-2025-68470, CVE-2026-21884, CVE-2026-22029, CVE-2026-22030. This has been addressed in the...

Security Bulletin: The IBM SPSS Collaboration and Deployment Services impacted by multiple vulnerabilities disclosed in IBM Semeru Runtime

Summary The IBM SPSS Collaboration and Deployment Services impacted by multiple vulnerabilities disclosed in IBM Semeru Runtime CVE-2026-21945, CVE-2026-21932, CVE-2026-21933, CVE-2026-21925, CVE-2026-1188. These vulnerabilities are addressed. Vulnerability Details CVEID:CVE-2026-21945 DESCRIPTIO...

CVE-2023-20060

A vulnerability in the web-based management interface of Cisco Prime Collaboration Deployment could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack against a user of the interface. This vulnerability exists because the web-based management interface does not...

Cisco Multiple Product Security Vulnerabilities

Cisco Unity Connection UC and others are products of Cisco USA.Cisco Unity Connection is a voice messaging platform.Cisco Unified Communications Manager CUCM, Unified CM. Cisco Unified Communications Manager CUCM, Unified CM, CallManager is a call processing component of a unified communications...

Cisco Prime Collaboration Deployment 跨站脚本漏洞

Cisco Prime Collaboration Deployment is a GUI interface from Cisco USA. It allows users to perform tasks such as migrations or upgrades on a list of servers. A cross-site scripting vulnerability exists in Cisco Prime Collaboration Deployment that stems from not properly validating user-supplied...

Cisco Prime Collaboration Deployment Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Prime Collaboration Deployment could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack against a user of the interface. This vulnerability exists because the web-based management interface does not...

PT-2023-2883 · Cisco · Cisco Prime Collaboration Deployment

Name of the Vulnerable Software and Affected Versions: Cisco Prime Collaboration Deployment affected versions not specified Description: A vulnerability in the web-based management interface of Cisco Prime Collaboration Deployment could allow an unauthenticated, remote attacker to conduct a...

Vulnerabilities fixed in IBM SPSS

Several vulnerabilities have been fixed in Spring Framework version 5.3.20 as part of IBM SPSS Collaboration and Deployment Services. The vulnerabilities can be exploited by a malicious be exploited to execute arbitrary code and/or to cause a denial-of-service DoS exploit. These vulnerabilities...

CVE-2016-1437

SQL injection vulnerability in the SQL database in Cisco Prime Collaboration Deployment before 11.5.1 allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuy92549...

CVE-2016-1437

SQL injection vulnerability in the SQL database in Cisco Prime Collaboration Deployment before 11.5.1 allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuy92549...

CVE-2016-1437

SQL injection vulnerability in the SQL database in Cisco Prime Collaboration Deployment before 11.5.1 allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuy92549...

CVE-2016-1437

CVE-2016-1437 is a SQL injection vulnerability in the SQL database of Cisco Prime Collaboration Deployment, affecting versions prior to 11.5.1. The flaw allows remote authenticated users to execute arbitrary SQL commands via a crafted URL (Bug CSCuy92549). Exploitation relies on inadequate input ...

Cisco Prime Collaboration Deployment SQL Injection Vulnerability

Cisco Prime Collaboration Deployment is a suite of software for managing Unified Communications UC applications from the U.S. company Cisco Cisco. A SQL injection vulnerability exists in Cisco Prime Collaboration Deployment using software versions prior to 11.5.1. A remote attacker could exploit...

Cisco Prime Collaboration Deployment SQL Injection Vulnerability

A vulnerability in the interface of the Cisco Prime Collaboration Deployment SQL database could allow an authenticated, remote attacker to impact the confidentiality of the system by executing arbitrary SQL queries. The vulnerability is due to a lack of input validation for user-supplied input in...

The vulnerability of the Cisco Unified Communications Manager system allows a perpetrator to gain root user privileges.

The vulnerability of the Prime Collaboration Deployment component of the Cisco Unified Communications Manager system is related to the lack of protection for service data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain root user privileges through a direc...

Cisco Unified Communications Manager Information Disclosure Vulnerability (CNVD-2015-05103)

Cisco Unified Communications Manager is an enterprise-class IP telephony call processing system. Cisco Unified Communications Manager 10.5 3.10000.9 has a security vulnerability in the implementation of the Prime Collaboration Deployment component, which can be exploited by an authenticated remot...

Cisco Unified Communications Manager Prime Collaboration Deployment Information Disclosure Vulnerability

A vulnerability in the Prime Collaboration Deployment of Cisco Unified Communications Manager could allow an authenticated, remote attacker to view sensitive data. The vulnerability is due to insufficient protections of data at rest. An attacker could exploit this vulnerability by browsing to a...

Cross site request forgery (csrf)

IBM SPSS Collaboration and Deployment Services 4.2.1 before 4.2.1.3 IF3 and 5.0 before FP3 allows remote authenticated users to read application log files via a direct HTTP request...