187 matches found
CVE-2017-6668
Vulnerabilities in the web-based GUI of Cisco Unified Communications Domain Manager CUCDM could allow an authenticated, remote attacker to impact the confidentiality of the system by executing arbitrary SQL queries, aka SQL Injection. More Information: CSCvc52784 CSCvc97648. Known Affected...
Sql injection
Vulnerabilities in the web-based GUI of Cisco Unified Communications Domain Manager CUCDM could allow an authenticated, remote attacker to impact the confidentiality of the system by executing arbitrary SQL queries, aka SQL Injection. More Information: CSCvc52784 CSCvc97648. Known Affected...
CVE-2017-6668
CVE-2017-6668 affects the web-based GUI of Cisco Unified Communications Domain Manager (CUCDM). The issue is an SQL Injection caused by insufficient validation of user-supplied input in HTTP request parameters, allowing an authenticated, remote attacker to impact confidentiality by executing arbi...
Cisco Unified Communications Domain Manager Open Redirect Vulnerability
Cisco Unified Communications Manager is a call processing component of a Cisco IP telephony solution. An open redirection vulnerability exists in Cisco Unified Communications Domain Manager, which allows remote attackers to redirect users to an arbitrary website and conduct phishing attacks via...
Multiple SQL Injection Vulnerabilities in Cisco Unified Communications Domain Manager
Cisco Unified Communications Manager is a call processing component of a Cisco IP telephony solution. Multiple SQL injection vulnerabilities exist in Cisco Unified Communications Domain Manager. A failure of the program to properly filter user-supplied data prior to an SQL query could allow an...
Cisco Unified Communications Domain Manager Open Redirect Vulnerability
A vulnerability in the web-based GUI of Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. The vulnerability is due to improper input validation of HTTP request parameters by the affected software. An attacker...
Cisco Unified Communications Domain Manager SQL Injection Vulnerabilities
Vulnerabilities in the web-based GUI of Cisco Unified Communications Domain Manager CUCDM could allow an authenticated, remote attacker to impact the confidentiality of the system by executing arbitrary SQL queries. The vulnerabilities are due to insufficient validation of user-supplied input in...
Cisco Unified Communications Domain Manager Cross-Site Scripting Vulnerability (CNVD-2016-01927)
Cisco Unified Communications Manager is an enterprise-class IP telephony call processing system. Cisco Unified Communications Domain Manager CDM 8.11 suffers from a cross-site scripting vulnerability in its implementation, which can be exploited by an authenticated remote user to inject arbitrary...
CVE-2016-1314
Cross-site scripting XSS vulnerability in Cisco Unified Communications Domain Manager CDM 8.11 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCux80760...
CVE-2016-1314
CVE-2016-1314 concerns Cisco Unified Communications Domain Manager (CDM) 8.1(1). A cross-site scripting (XSS) flaw allows an authenticated remote user to inject arbitrary web script or HTML via a crafted URL due to insufficient input validation. Multiple sources (NVD, CNVD, CVE list, Cisco adviso...
Cisco Unified Communications Domain Manager Cross-Site Scripting Vulnerability
A vulnerability in the Cisco Unified Communications Domain Manager Unified CDM could allow an authenticated, remote attacker to execute a cross-site scripting XSS attack. The vulnerability is due to insufficient input validation of user-supplied input. An attacker could exploit this vulnerability...
CVE-2016-1354
Cross-site scripting XSS vulnerability in Cisco Unified Communications Domain Manager UCDM 8.x before 8.1.1 allows remote attackers to inject arbitrary web script or HTML via crafted markup data, aka Bug ID CSCud41176...
CVE-2016-1354
CVE-2016-1354 affects Cisco Unified Communications Domain Manager (UCDM/UCDM) versions 8.x before 8.1.1. The vulnerability is a cross-site scripting (XSS) flaw in the web framework triggered by crafted markup data, due to insufficient input validation. Multiple sources (NVD, CVE listings, CNVD, C...
CVE-2016-1354
Cross-site scripting XSS vulnerability in Cisco Unified Communications Domain Manager UCDM 8.x before 8.1.1 allows remote attackers to inject arbitrary web script or HTML via crafted markup data, aka Bug ID CSCud41176...
Cisco Unified Communications Domain Manager Cross-Site Scripting Vulnerability
A vulnerability in the web framework of Cisco Unified Communications Domain Manager UCDM Software could allow an unauthenticated, remote attacker to perform a cross-site scripting XSS attack. The vulnerability is due to insufficient input validation of user-submitted content. An attacker could...
Cisco Unified Communications Domain Manager Denial of Service Vulnerability (CNVD-2015-08386)
Cisco Unified Communications Domain Manager is an enterprise-class IP telephony call-processing system from the American company Cisco Cisco. A denial of service vulnerability exists in Cisco Unified Communications Domain Manager 10.6. It allows an authenticated remote user to cause a denial of...
CVE-2015-6422
The self-service application in Cisco Unified Communications Domain Manager CUCDM 10.61 allows remote authenticated users to cause a denial of service subapplication outage via malformed requests, aka Bug ID CSCuu10981...
CVE-2015-6422
The CVE-2015-6422 entry concerns Cisco Unified Communications Domain Manager (CUCDM) self-service application in version 10.6(1). The vulnerability arises from improper handling of malformed requests by the self-service component, allowing an authenticated remote user to cause a denial of service...
CVE-2015-6422
The self-service application in Cisco Unified Communications Domain Manager CUCDM 10.61 allows remote authenticated users to cause a denial of service subapplication outage via malformed requests, aka Bug ID CSCuu10981...
Cisco Unified Communications Domain Manager Denial of Service Vulnerability
A vulnerability in Cisco Unified Communications Domain Manager CUCDM could allow an authenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to improper handling of malformed requests by the self-service application on an affected CUCDM device. An...