Lucene search
K

188 matches found

Cvelist
Cvelist
added 2015/04/03 10:0 a.m.24 views

CVE-2015-0684

SQL injection vulnerability in the Image Management component in Cisco Unified Communications Domain Manager 8.14 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuq52515...

7.9AI score0.01361EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/04/03 10:0 a.m.22 views

CVE-2015-0682

Cisco Unified Communications Domain Manager 8.14 allows remote authenticated users to execute arbitrary code by visiting a "deprecated page," aka Bug ID CSCup90168...

7.3AI score0.02107EPSS
Exploits0References2
CVE
CVE
added 2015/04/03 10:0 a.m.46 views

CVE-2015-0683

Cisco Unified Communications Domain Manager 8.1(4) is affected by CVE-2015-0683, where an authenticated, remote attacker can disclose sensitive information via a file-inclusion attack. The root cause is described as an unspecified condition enabling local file inclusion. Impact is information dis...

4CVSS5.9AI score0.01327EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2015/04/03 10:0 a.m.52 views

CVE-2015-0682

Cisco Unified Communications Domain Manager 8.1(4) is affected by CVE-2015-0682 (Bug CSCup90168). The issue allows an authenticated, remote attacker to execute arbitrary code by visiting a deprecated page, as described in Cisco’s advisory Cisco-SA-20150331-CVE-2015-0682. Connected documents corro...

6.5CVSS7.5AI score0.02107EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/04/03 10:0 a.m.22 views

CVE-2015-0683

Cisco Unified Communications Domain Manager 8.14 allows remote authenticated users to obtain sensitive information via a file-inclusion attack, aka Bug ID CSCup94744...

5.7AI score0.01327EPSS
Exploits0References2
CNVD
CNVD
added 2015/04/03 12:0 a.m.4 views

Cisco CUCDM Remote Code Execution Vulnerability

Cisco Unified Communications Manager is an enterprise-class IP telephony call processing system. A security vulnerability exists in the deprecation page of the Cisco Unified Communications Domain Manager Application Software due to an invalid security restriction. An authenticated, remote attacke...

6.5CVSS7.5AI score0.02107EPSS
Exploits0References1
CNVD
CNVD
added 2015/04/03 12:0 a.m.4 views

Cisco CUCDM SQL Injection Vulnerability

Cisco Unified Communications Manager is an enterprise-class IP telephony call processing system. A sql injection vulnerability exists in the graphical administration feature of Cisco Unified Communications Domain Manager Application Software due to a failure to effectively validate user-supplied...

6.5CVSS7.4AI score0.01361EPSS
Exploits0References1
Cisco
Cisco
added 2015/03/31 6:8 p.m.33 views

Cisco Unified Communications Domain Manager Application Software Information Disclosure Vulnerability

A vulnerability in Cisco Unified Communications Domain Manager Application Software could allow an authenticated, remote attacker to gain access to sensitive information. The vulnerability is due to unspecified condition within the affected software that could allow local file inclusion. An...

4CVSS6.6AI score0.01327EPSS
Exploits0References1
Cisco
Cisco
added 2015/03/31 6:5 p.m.36 views

Cisco Unified Communications Domain Manager Application Software SQL Injection Vulnerability

A vulnerability in the Image Management functionality of Cisco Unified Communications Domain Manager Application Software could allow an authenticated, remote attacker to conduct SQL injection attacks. The vulnerability is due to insufficient validation of user-supplied input by the affected...

5.5CVSS7.1AI score0.01361EPSS
Exploits0References1
Cisco
Cisco
added 2015/03/31 6:2 p.m.40 views

Cisco Unified Communications Domain Manager Application Software Remote Code Execution Vulnerability

A vulnerability in a deprecated page in Cisco Unified Communications Domain Manager Application Software could allow an authenticated, remote attacker to execute arbitrary code. The vulnerability is due to insufficient security restrictions imposed by the affected software that could allow...

4.6CVSS7.3AI score0.02107EPSS
Exploits0References1
Cisco
Cisco
added 2015/01/23 9:20 p.m.30 views

Cisco Unified Communications Domain Manager Platform High CPU Utilization Denial of Service Vulnerability

A vulnerability in Cisco Unified Communications Domain Manager Platform Software could allow an unauthenticated, remote attacker to cause high CPU utilization, which may affect the performance of the system and make some services unavailable. The vulnerability is due to insufficient implementatio...

5CVSS6.3AI score0.02374EPSS
Exploits0References1
CNVD
CNVD
added 2015/01/16 12:0 a.m.4 views

Cisco Unified Communications Domain Manager Remote Denial of Service Vulnerability (CNVD-2015-00394)

Cisco Unified Communications is the call processing component of a Cisco IP telephony solution. A remote denial of service vulnerability exists in Cisco Unified Communications Domain Manager, which can be exploited by an attacker to initiate a denial of service and deny service to a legitimate us...

5CVSS6.9AI score0.0202EPSS
Exploits0References1
CNVD
CNVD
added 2015/01/16 12:0 a.m.5 views

Cisco Unified Communications Domain Manager Cross-Site Request Forgery Vulnerability

Cisco Unified Communications is the call processing component of a Cisco IP telephony solution. A cross-site request forgery vulnerability exists in Cisco Unified Communications Domain Manager, which allows remote attackers to exploit the vulnerability to hijack the authentication of arbitrary...

6.8CVSS7.2AI score0.01267EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/01/15 10:0 p.m.22 views

CVE-2015-0588

Cross-site request forgery CSRF vulnerability in Cisco Unified Communications Domain Manager UCDM 10 allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuo77055...

7.2AI score0.01267EPSS
Exploits0References5
CNVD
CNVD
added 2015/01/12 12:0 a.m.5 views

Cisco Unified Communications Domain Manager Remote Denial of Service Vulnerability (CNVD-2015-00226)

Cisco Unified Communications is the call processing component of a Cisco IP telephony solution. A remote denial of service vulnerability exists in Cisco Unified Communications Domain Manager, which can be exploited by remote attackers to cause a denial of service CPU consumption...

5CVSS6.8AI score0.02374EPSS
Exploits0References1
Metasploit
Metasploit
added 2015/01/10 6:29 a.m.53 views

Viproy CUCDM IP Phone XML Services - Speed Dial Attack Tool

The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager CDM, before version 10, doesn't implement access control properly, which allows remote attackers to modify user information. This module exploits the vulnerability to make unauthorized speed dial entity...

7.5CVSS7AI score0.21879EPSS
Exploits4
CVE
CVE
added 2015/01/10 2:0 a.m.52 views

CVE-2014-8020

CVE-2014-8020 affects Cisco Unified Communications Domain Manager Platform Software. The issue allows unauthenticated remote attackers to cause high CPU utilization and degraded performance or service outage by sending a flood of malformed TCP/UDP packets (Bug ID CSCup25276). Cisco’s advisory not...

5CVSS6.9AI score0.02374EPSS
Exploits0References4Affected Software1
Cisco
Cisco
added 2015/01/06 9:35 p.m.30 views

Cisco Unified Communications Domain Manager XSS Vulnerability

A vulnerability in the web framework of the Cisco Unified Communications Domain Manager application could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the web interface on an affected system. The vulnerability is due to imprope...

4.3CVSS5.8AI score0.01773EPSS
Exploits0References1
NVD
NVD
added 2014/12/22 7:59 p.m.22 views

CVE-2014-8018

Multiple cross-site scripting XSS vulnerabilities in Business Voice Services Manager BVSM pages in the Application Software in Cisco Unified Communications Domain Manager 8 allow remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug IDs CSCur19651, CSCur18555,...

4.3CVSS5.7AI score0.01773EPSS
Exploits0References3
Prion
Prion
added 2014/12/22 7:59 p.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Business Voice Services Manager BVSM pages in the Application Software in Cisco Unified Communications Domain Manager 8 allow remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug IDs CSCur19651, CSCur18555,...

4.3CVSS5.9AI score0.01773EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder