Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Firmware: qcom: SCM – Cleaning up the global scm variable in case of probe failures. If the SCM driver fails the probe, it should not leave the scm variable assigned, because external users of this driver will assume that the pro...

EUVD-2015-0693

Malware in sbrugna...

CVE-2025-26691

OpenHarmony has a local information-leak vulnerability CVE-2025-26691 affecting v5.0.3 and earlier. The issue is triggered by a flaw in permission handling (reported as improper preservation of permissions in the telephony_call_manager context), enabling a local attacker to leak confidential data...

CVE-2025-26691 telephony_call_manager has an improper preservation of permissions vulnerability

in OpenHarmony v5.0.3 and prior versions allow a local attacker cause information leak through get permission...

Cisco Unified Communications Manager (CUCM) Detection Consolidation

Consolidation of Cisco Unified Communications Manager CUCM, formerly Call Manager detections. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Cisco Unified Communications Manager 跨站脚本漏洞

Cisco Unified Communications Manager CUCM, Unified CM, CallManager is a call-processing component of a unified communications system from Cisco. The component provides a scalable, distributable and highly available enterprise IP telephony call processing solution. A security vulnerability exists ...

Asterisk Gather Credentials

This module retrieves SIP and IAX2 user extensions and credentials from Asterisk Call Manager service. Valid manager credentials are required. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...

CVE-2017-6624

A vulnerability in Cisco IOS 15.53M Software for Cisco CallManager Express CME could allow an unauthenticated, remote attacker to make unauthorized phone calls. The vulnerability is due to a configuration restriction in the toll-fraud protections component of the affected software. An attacker...

Cisco Unified Communications Manager (CUCM) Detection (SSH Login)

SSH login-based detection of Cisco Unified Communications Manager CUCM, formerly Call Manager Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-late...

Cisco Unified Call Manager Arbitrary File Read Vulnerability

Cisco Unified CallManager is a software-based call processing component of the Cisco Unified Communications System. Cisco Unified CallManager fails to properly restrict resource requests and allows authenticated users to read arbitrary files...

CVE-2015-0680

Cisco Unified Call Manager CM 9.12.1000.28 does not properly restrict resource requests, which allows remote authenticated users to read arbitrary files via unspecified vectors, aka Bug ID CSCuq44439...

Code injection

Cisco Unified Call Manager CM 9.12.1000.28 does not properly restrict resource requests, which allows remote authenticated users to read arbitrary files via unspecified vectors, aka Bug ID CSCuq44439...

CVE-2015-0680

Cisco Unified Call Manager CM 9.12.1000.28 does not properly restrict resource requests, which allows remote authenticated users to read arbitrary files via unspecified vectors, aka Bug ID CSCuq44439...

CVE-2015-0680

Cisco Unified Call Manager (CM) 9.1(2.1000.28) is affected by an arbitrary file-read vulnerability caused by improper restriction of resource requests. An authenticated, remote attacker could read arbitrary files on the targeted device via unspecified vectors. This requires authentication, mitiga...

Cisco Unified Call Manager Arbitrary File Retrieval Vulnerability

A vulnerability in Cisco Unified Call Manager Cisco Unified CM could allow an authenticated, remote attacker to retrieve arbitrary files. The vulnerability is due to improper security restrictions by the affected application while handling requests for resources. An authenticated, remote attacker...

CVE-2011-1606

Unspecified vulnerability in Cisco Unified Communications Manager aka CUCM, formerly CallManager 6.x before 6.15su2, 7.x before 7.15su1, 8.0 before 8.03, and 8.5 before 8.51 allows remote attackers to cause a denial of service process failure via a malformed SIP message, aka Bug ID CSCtg62855...

Cisco Unified CallManager xmldirectorylist.jsp SQL Injection Vulnerability

This vulnerability allows remote attackers to inject arbitrary SQL into the backend database on vulnerable installations of Cisco Unified CM. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Call Manager component. The system exposes an Apache...

Cisco IOS NAT Skinny Call控制协议多个远程拒绝服务漏洞

BUGTRAQ ID: 31359 CVE ID: CVE-2008-3810 CVE-2008-3811 CNCVE ID：CNCVE-20083810 CNCVE-20083811 Cisco IOS Skinny Call控制协议是Cisco专利的语音通讯协定，被用来促进在 CallManager与IP电话之间的来电管理功能。 Cisco IOS SCCP协议存在多个问题，远程攻击者可以利用漏洞对服务进行拒绝服务攻击。 Skinny Call Control Protocol SCCP在SCCP客户端和呼叫管理器Call Manager之间启用语音通信，通常CM默认在TCP...

Cisco Call Manager / Cisco Unified Communications Manager buffer overflow

Buffer overflow in CTL Provider Service TCP/2444...

TPTI-08-02: Cisco Call Manager CTLProvider Heap Overflow Vulnerability

TPTI-08-02: Cisco Call Manager CTLProvider Heap Overflow Vulnerability http://dvlabs.tippingpoint.com/advisory/TPTI-08-02 January 16, 2008 -- CVE ID: CVE-2008-0027 -- Affected Vendor: Cisco -- Affected Products: Cisco Call Manager 4.13 -- Vulnerability Details: This vulnerability allows remote...