Lucene search
K

226 matches found

Vulnrichment
Vulnrichment
added 2026/03/11 4:31 p.m.3 views

CVE-2026-20117 Multiple Cisco Contact Center Products Cross-Site Scripting Vulnerabilities

A vulnerability in the web-based management interface of Cisco Unified Contact Center Express Unified CCX could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability exists because the web-based management interfa...

6.1CVSS6AI score0.00207EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/11 4:31 p.m.5 views

CVE-2026-20116 Multiple Cisco Contact Center Products Cross-Site Scripting Vulnerabilities

A vulnerability in the web-based management interface of Cisco Finesse, Cisco Packaged Contact Center Enterprise Packaged CCE, Cisco Unified Contact Center Enterprise Unified CCE, Cisco Unified Contact Center Express Unified CCX, and Cisco Unified Intelligence Center could allow an unauthenticate...

6.1CVSS6AI score0.00207EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/11 12:0 a.m.6 views

Cisco多款产品 跨站脚本漏洞

Cisco Finesse is a product of the American company Cisco. Cisco Finesse is a call center management software suite. Cisco Unified Contact Center Enterprise is a unified contact center solution. Cisco Packaged Contact Center Enterprise is a customer contact center system. Several Cisco products ha...

6.1CVSS5.6AI score0.00207EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/22 5:34 p.m.6 views

CVE-2026-20109

Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise Packaged CCE and Cisco Unified Contact Center Enterprise Unified CCE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-base...

4.8CVSS5.7AI score0.00173EPSS
Exploits0References1
NVD
NVD
added 2026/01/21 5:16 p.m.9 views

CVE-2026-20109

Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise Packaged CCE and Cisco Unified Contact Center Enterprise Unified CCE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-base...

4.8CVSS0.00173EPSS
Exploits0References1
CVE
CVE
added 2026/01/21 4:26 p.m.15 views

CVE-2026-20109

Summary (CVE-2026-20109) : Multiple XSS vulnerabilities in the web-based management interfaces of Cisco Packaged Contact Center Enterprise (Packaged CCE) and Cisco Unified Contact Center Enterprise (Unified CCE). The flaws stem from improper validation of user-supplied input, allowing an authenti...

4.8CVSS5.8AI score0.00173EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/21 4:26 p.m.3 views

CVE-2026-20109 Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerability

Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise Packaged CCE and Cisco Unified Contact Center Enterprise Unified CCE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-base...

4.8CVSS5.8AI score0.00173EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/21 4:26 p.m.20 views

CVE-2026-20109 Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerability

Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise Packaged CCE and Cisco Unified Contact Center Enterprise Unified CCE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-base...

4.8CVSS0.00173EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/21 4:26 p.m.3 views

CVE-2026-20055

Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise Packaged CCE and Cisco Unified Contact Center Enterprise Unified CCE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-base...

4.8CVSS5.8AI score0.00173EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2026/01/21 4:26 p.m.3 views

CVE-2026-20055 Cisco Packaged Contact Center Enterprise & Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerability

Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise Packaged CCE and Cisco Unified Contact Center Enterprise Unified CCE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-base...

4.8CVSS5.8AI score0.00173EPSS
Exploits0References1
CVE
CVE
added 2026/01/21 4:26 p.m.20 views

CVE-2026-20055

Cisco CVE-2026-20055 affects the web-based management interfaces of Packaged CCE and Unified CCE. The issue is cross-site scripting (XSS) due to insufficient input validation in the interface pages. An authenticated attacker with administrative credentials could inject script code and potentially...

4.8CVSS5.8AI score0.00173EPSS
Exploits0References1
Cisco
Cisco
added 2026/01/21 4:0 p.m.13 views

Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise Packaged CCE and Cisco Unified Contact Center Enterprise Unified CCE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-base...

4.8CVSS5.8AI score0.00173EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/21 12:0 a.m.13 views

PT-2026-3786

Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise Packaged CCE and Cisco Unified Contact Center Enterprise Unified CCE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-base...

4.8CVSS5.7AI score0.00173EPSS
Exploits0References2
CNVD
CNVD
added 2025/11/10 12:0 a.m.3 views

Cisco Unified Contact Center Express Path Traversal Vulnerability

Cisco Unified Contact Center Express Unified CCX is a customer relationship management component of a unified communications solution from Cisco. The component supports features such as self-service voice, call distribution, and customer access control. A path traversal vulnerability exists in...

4.9CVSS5.8AI score0.01036EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/11/05 5:15 p.m.3 views

CVE-2025-20376

A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to upload and execute arbitrary files. This vulnerability is due to an insufficient input validation associated to file upload mechanisms. An attacker could exploit this vulnerability by uploading a...

7.2CVSS6.1AI score0.00436EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2025/11/05 5:15 p.m.4 views

CVE-2025-20375

A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to upload and execute arbitrary files. This vulnerability is due to an insufficient input validation associated to specific UI features. An attacker could exploit this vulnerability by uploading a...

7.2CVSS0.00359EPSS
Exploits0References1
CVE
CVE
added 2025/11/05 4:31 p.m.22 views

CVE-2025-20375

The CVE-2025-20375 issue affects Cisco Unified CCX web UI. An authenticated attacker could upload crafted files due to insufficient input validation in specific UI features, enabling arbitrary file upload and execution on the underlying OS. Exploitation requires valid administrative credentials. ...

7.2CVSS7AI score0.00359EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2025/11/05 4:0 p.m.8 views

Multiple Cisco Contact Center Products Vulnerabilities

Multiple vulnerabilities in Cisco Unified Contact Center Express Unified CCX, Cisco Unified Contact Center Enterprise Unified CCE, Cisco Packaged Contact Center Enterprise Packaged CCE, and Cisco Unified Intelligence Center CUIC could allow an authenticated, remote attacker to disclose sensitive...

6.5CVSS6.8AI score0.01036EPSS
Exploits0References1
Cisco
Cisco
added 2025/11/05 4:0 p.m.29 views

Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities

Multiple vulnerabilities in the Java Remote Method Invocation RMI process of Cisco Unified Contact Center Express Unified CCX could allow an unauthenticated, remote attacker to upload arbitrary files, bypass authentication, execute arbitrary commands, and elevate privileges to root. For more...

9.8CVSS7.7AI score0.00931EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-24551

Malware in sbrugna...

10CVSS9.3AI score0.06945EPSS
Exploits0References2
Rows per page
Query Builder