CVE-2026-20045

A vulnerability in Cisco Unified Communications Manager Unified CM, Cisco Unified Communications Manager Session Management Edition Unified CM SME, Cisco Unified Communications Manager IM & Presence Service Unified CM IM&P, Cisco Unity Connection, and Cisco Webex Calling Dedicated Instance could...

Tadiran Telecom Aeonix 路径遍历漏洞

Tadiran Telecom Aeonix is a purely software-based Unified Communications and Collaboration UC&C solution from Tadiran Telecom, Israel. A security vulnerability exists in Tadiran Telecom Aeonix that stems from the presence of a path traversal vulnerability...

CVE-2021-1478

A vulnerability in the Java Management Extensions JMX component of Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME could allow an authenticated, remote attacker to cause a denial of service DoS condition on an...

Vulnerabilities fixed in Cisco Unified Communications

Cisco has fixed multiple vulnerabilities in several Unified Communications products. An authenticated malicious person remote can exploit the vulnerabilities to gain access data on the underlying file system or in the underlying database. This includes hashed passwords stored in this database...

Quest Software Policy Authority For Unified Communications 跨站脚本漏洞

Quest Policy Authority For Unified Communications is a software from Quest, Inc. that is used in corporate environments to consolidate communication data between various media text and instant messaging, video conferencing, email and voicemail. A cross-site scripting vulnerability exists in Quest...

Quest Policy Authority For Unified Communications Code Issue Vulnerability

Quest Software Policy Authority For Unified Communications is a software from Quest Software, Inc. that is used in enterprise environments to consolidate communication data text and instant messaging, videoconferencing, email and voicemail between various media. A code issue vulnerability exists ...

Quest Policy Authority For Unified Communications Cross-Site Scripting Vulnerability

Quest Software Policy Authority For Unified Communications is a software from Quest Software, Inc. that is used in enterprise environments to consolidate communication data text and instant messaging, videoconferencing, email and voicemail between various media. A cross-site scripting vulnerabili...

Cisco Unified Communications Manager and Service Denial of Service Vulnerabilities

Cisco Unified Communications Manager CUCM, Unified CM, CallManager is a call-processing component of a unified communications system from Cisco. The component provides a scalable, distributable and highly available enterprise IP telephony call processing solution. A security vulnerability exists ...

Cisco Unified Communications Domain Manager Cross-Site Scripting Vulnerability (CNVD-2019-45003)

Cisco Unified Communications Domain Manager CUCDM is a Cisco Cisco company dedicated to unified communications solutions in the call processing components. The component has scalable, distributable, and highly available enterprise voice-over-IP call processing capabilities. A cross-site scripting...

CVE-2019-1911

A vulnerability in the CLI of Cisco Unified Communications Domain Manager Cisco Unified CDM Software could allow an authenticated, local attacker to escape the restricted shell. The vulnerability is due to insufficient input validation of shell commands. An attacker could exploit this vulnerabili...

CVE-2018-0135

A vulnerability in Cisco Unified Communications Manager could allow an authenticated, remote attacker to access sensitive information on an affected system. The vulnerability exists because the affected software improperly validates user-supplied search input. An attacker could exploit this...

CVE-2018-0120

A vulnerability in the web framework of Cisco Unified Communications Manager could allow an authenticated, remote attacker to conduct an SQL injection attack against an affected system. The vulnerability exists because the affected software fails to validate user-supplied input in certain SQL...

Cisco Unified Communications Manager Cross-Site Scripting Vulnerability

Cisco Unified Communications Manager CUCM, Unified CM, CallManager is a call-processing component of a unified communications system from Cisco. The component provides a scalable, distributable and highly available enterprise IP telephony call processing solution. A security vulnerability exists ...

Cisco Unified Communications Domain Manager Open Redirect Vulnerability

Cisco Unified Communications Manager is a call processing component of a Cisco IP telephony solution. An open redirection vulnerability exists in Cisco Unified Communications Domain Manager, which allows remote attackers to redirect users to an arbitrary website and conduct phishing attacks via...

CVE-2017-6654

A vulnerability in the web-based management interface of Cisco Unified Communications Manager 10.5 through 11.5 could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. The vulnerabilit...

Multiple Cross-Site Scripting Vulnerabilities in Cisco Unified Communications Manager

Cisco Unified Communications Manager CUCM, Unified CM is a call-processing component of a unified communications system from Cisco. The component provides a scalable, distributable and highly available enterprise IP telephony call processing solution. Multiple cross-site scripting vulnerabilities...

Unspecified Elevation of Privilege Vulnerability in Cisco Unified Communications Manager

Cisco Unified Communications Manager is a call processing component of a Cisco IP telephony solution. An elevation of privilege vulnerability exists in Cisco Unified Communications Manager that allows a local attacker to inject malicious parameters and execute with root privileges, due to the...

Cisco CUCDM Remote Code Execution Vulnerability

Cisco Unified Communications Manager is an enterprise-class IP telephony call processing system. A security vulnerability exists in the deprecation page of the Cisco Unified Communications Domain Manager Application Software due to an invalid security restriction. An authenticated, remote attacke...

Update Rollup for Lync Server 2013 Unified Communications Managed API 4.0 Core Runtime x64 (KB3081744)

Update Rollup for Lync Server 2013 Unified Communications Managed API 4.0 Core Runtime x64 KB3081744...

Security update 1970-01-01

...