Lucene search
+L

189 matches found

EUVD
EUVD
added 2026/03/11 6:30 p.m.5 views

EUVD-2026-11223

A vulnerability in the web-based management interface of Cisco Unified Contact Center Express Unified CCX could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability exists because the web-based management interfa...

6.1CVSS6AI score0.00207EPSS
Exploits0References2
NVD
NVD
added 2026/03/11 5:16 p.m.4 views

CVE-2026-20117

A vulnerability in the web-based management interface of Cisco Unified Contact Center Express Unified CCX could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability exists because the web-based management interfa...

6.1CVSS0.00207EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/11 4:31 p.m.3 views

CVE-2026-20117 Multiple Cisco Contact Center Products Cross-Site Scripting Vulnerabilities

A vulnerability in the web-based management interface of Cisco Unified Contact Center Express Unified CCX could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability exists because the web-based management interfa...

6.1CVSS6AI score0.00207EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/11 4:31 p.m.2 views

CVE-2026-20117

A vulnerability in the web-based management interface of Cisco Unified Contact Center Express Unified CCX could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability exists because the web-based management interfa...

6.1CVSS6AI score0.00207EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/11 4:31 p.m.29 views

CVE-2026-20117 Multiple Cisco Contact Center Products Cross-Site Scripting Vulnerabilities

A vulnerability in the web-based management interface of Cisco Unified Contact Center Express Unified CCX could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. This vulnerability exists because the web-based management interfa...

6.1CVSS0.00207EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/11 4:31 p.m.6 views

CVE-2026-20116 Multiple Cisco Contact Center Products Cross-Site Scripting Vulnerabilities

A vulnerability in the web-based management interface of Cisco Finesse, Cisco Packaged Contact Center Enterprise Packaged CCE, Cisco Unified Contact Center Enterprise Unified CCE, Cisco Unified Contact Center Express Unified CCX, and Cisco Unified Intelligence Center could allow an unauthenticate...

6.1CVSS6AI score0.00207EPSS
Exploits0References1
CVE
CVE
added 2026/03/11 4:31 p.m.15 views

CVE-2026-20116

The CVE-2026-20116 entry concerns Cisco’s web-based management interfaces for Cisco Finesse and several Cisco contact center products (Packaged CCE, Unified CCE, Unified CCX, and Unified Intelligence Center). The vulnerability arises from insufficient validation of user-supplied input in the inte...

6.1CVSS6AI score0.00207EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.8 views

PT-2026-24731

A vulnerability in the web-based management interface of Cisco Finesse, Cisco Packaged Contact Center Enterprise Packaged CCE, Cisco Unified Contact Center Enterprise Unified CCE, Cisco Unified Contact Center Express Unified CCX, and Cisco Unified Intelligence Center could allow an unauthenticate...

6.1CVSS6AI score0.00207EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.5 views

PT-2026-24732

Name of the Vulnerable Software and Affected Versions Cisco Unified Contact Center Express Unified CCX affected versions not specified Description A flaw exists in the web-based management interface that could allow a remote attacker to perform cross-site scripting XSS attacks against a user of t...

6.4CVSS6.6AI score0.00207EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/11 12:0 a.m.12 views

Cisco Unified Contact Center Express 跨站脚本漏洞

Cisco Unified Contact Center Express is a customer relationship management component within the unified communication solutions offered by Cisco. This component supports features such as self-service voice services, call assignment, and customer access control. Cisco Unified Contact Center Expres...

6.1CVSS5.6AI score0.00207EPSS
Exploits0References1
NCSC
NCSC
added 2025/11/18 7:4 a.m.10 views

Vulnerabilities fixed in Cisco Unified Contact Center Express

Cisco has fixed vulnerabilities in Cisco Unified Contact Center Express CCX. The vulnerabilities are in the Java RMI process and the Contact Center Express Editor of Cisco Unified CCX. Unauthenticated attackers can exploit these vulnerabilities to upload files, execute commands with root privileg...

9.8CVSS8.4AI score0.00931EPSS
Exploits0References1
CNVD
CNVD
added 2025/11/10 12:0 a.m.3 views

Cisco Unified Contact Center Express Code Issue Vulnerability

Cisco Unified Contact Center Express Unified CCX is a customer relationship management component of a unified communications solution from Cisco. The component supports features such as self-service voice, call distribution, and customer access control. A security vulnerability exists in Cisco...

7.2CVSS5.9AI score0.00359EPSS
Exploits0References1
CNVD
CNVD
added 2025/11/10 12:0 a.m.5 views

Cisco Unified Contact Center Express Code Issue Vulnerability

Cisco Unified Contact Center Express Unified CCX is a customer relationship management component of a unified communications solution from Cisco. The component supports features such as self-service voice, call distribution, and customer access control. A security vulnerability exists in Cisco...

9.8CVSS7.5AI score0.00877EPSS
Exploits0References1
CNVD
CNVD
added 2025/11/10 12:0 a.m.4 views

Cisco Unified Contact Center Express Path Traversal Vulnerability

Cisco Unified Contact Center Express Unified CCX is a customer relationship management component of a unified communications solution from Cisco. The component supports features such as self-service voice, call distribution, and customer access control. A path traversal vulnerability exists in...

4.9CVSS5.8AI score0.01036EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/06 4:41 p.m.7 views

CVE-2025-20374

A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to perform a directory traversal and access arbitrary resources. This vulnerability is due to an insufficient input validation associated to specific UI features. An attacker could exploit this...

4.9CVSS6.9AI score0.01036EPSS
Exploits0References1
OSV
OSV
added 2025/11/05 5:15 p.m.7 views

CVE-2025-20376

A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to upload and execute arbitrary files. This vulnerability is due to an insufficient input validation associated to file upload mechanisms. An attacker could exploit this vulnerability by uploading a...

7.2CVSS6.1AI score0.00436EPSS
Exploits0References1
NVD
NVD
added 2025/11/05 5:15 p.m.12 views

CVE-2025-20358

A vulnerability in the Contact Center Express CCX Editor application of Cisco Unified CCX could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative permissions pertaining to script creation and execution. This vulnerability is due to improper authenticatio...

9.8CVSS0.00931EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/05 4:31 p.m.5 views

EUVD-2025-37888

A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to upload and execute arbitrary files. This vulnerability is due to an insufficient input validation associated to specific UI features. An attacker could exploit this vulnerability by uploading a...

6.5CVSS6.8AI score0.00359EPSS
Exploits0References2
CVE
CVE
added 2025/11/05 4:31 p.m.26 views

CVE-2025-20375

The CVE-2025-20375 issue affects Cisco Unified CCX web UI. An authenticated attacker could upload crafted files due to insufficient input validation in specific UI features, enabling arbitrary file upload and execution on the underlying OS. Exploitation requires valid administrative credentials. ...

7.2CVSS7AI score0.00359EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/11/05 4:31 p.m.8 views

CVE-2025-20376 Cisco Unified Contact Center Express Remote Code Execution Vulnerability

A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to upload and execute arbitrary files. This vulnerability is due to an insufficient input validation associated to file upload mechanisms. An attacker could exploit this vulnerability by uploading a...

6.5CVSS0.00436EPSS
Exploits0References1
Rows per page
Query Builder