2 matches found
Cisco Unity Connection Cross-Site Scripting (cisco-sa-cucm-cuc-imp-xss-OWuSYAp)
According to its self-reported version, Cisco Unity Connection is affected by a Cross-Site Scripting vulnerabilities. An remote attacker could exploit this vulnerability by inserting malicious data into a specific data field in the web interface. A successful exploit could allow the attacker to...
CVE-2020-3282
CVE-2020-3282 affects Cisco Unified Communications Manager family (including Session Management Edition, IM&P Service, Unity Connection) where the web-based management interface fails to validate user-supplied input, enabling unauthenticated remote attackers to perform cross-site scripting (XSS) ...