CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

NVD•added 2015/08/19 3:59 p.m.•14 views

CVE-2015-4298

Cisco Unified Web and E-Mail Interaction Manager 9.02 and 11.01 improperly performs authorization, which allows remote authenticated users to read or write to stored data via unspecified vectors, aka Bug ID CSCuo89056...

6.5CVSS6.1AI score0.02456EPSS

Exploits0References3

CVE•added 2015/08/19 3:0 p.m.•44 views

CVE-2015-4298

CVE-2015-4298 affects Cisco Unified Web and E-Mail Interaction Manager (versions 9.0(2) and 11.0(1)). The root cause is improper authorization handling that allows remote authenticated users to read or write stored data via unspecified vectors. The vulnerability results from insufficient validati...

6.5CVSS6.2AI score0.02456EPSS

Exploits0References3Affected Software1

CVE•added 2015/08/19 3:0 p.m.•41 views

CVE-2015-6255

CVE-2015-6255 affects Cisco Unified Web and E‑Mail Interaction Manager 9.0(2). The vulnerability resides in the web chat interface where insufficient input validation allows a remote attacker to deliver a crafted chat message that injects arbitrary web script or HTML (XSS). The root cause is inpu...

4.3CVSS5.8AI score0.02314EPSS

Exploits0References3Affected Software1

NVD•added 2015/02/28 2:59 a.m.•11 views

CVE-2015-0655

Cross-site scripting XSS vulnerability in Unified Web Interaction Manager in Cisco Unified Web and E-Mail Interaction Manager allows remote attackers to inject arbitrary web script or HTML via vectors related to a POST request, aka Bug ID CSCus74184...

4.3CVSS5.6AI score0.01773EPSS

Exploits0References3

CVE•added 2014/05/20 10:0 a.m.•39 views

CVE-2014-2192

CVE-2014-2192 affects Cisco Unified Web and E-mail Interaction Manager 9.0(2). The issue is a cross-site scripting (XSS) vulnerability caused by insufficient input validation in a parameter, allowing an unauthenticated, remote attacker to inject arbitrary script or HTML via a crafted link. The Ci...

4.3CVSS5.9AI score0.01148EPSS

Exploits0References3Affected Software1

Cvelist•added 2014/05/20 10:0 a.m.•22 views

CVE-2014-2194

system/egain/chat/entrypoint in Cisco Unified Web and E-mail Interaction Manager 9.02 allows remote attackers to have an unspecified impact by injecting a spoofed XML external entity...

6.7AI score0.01249EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by