CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public

Cisco has patched a bug in Unified Communications Manager that lets an unauthenticated attacker on the network write files to the box and, from there, climb to root. It is tracked as CVE-2026-20230, and proof-of-concept exploit code is already public. Cisco's PSIRT says it has not seen the flaw...

8.6CVSS6.2AI score0.00018EPSS

Exploits0

NCSC•added yesterday•7 views

Lack of transparency in Cisco Unified Communications Manager

Cisco has identified a vulnerability in Unified Communications Manager CM and Unified Communications Manager Session Management Edition CM SME. A malicious individual could exploit this vulnerability to carry out a Server-Side Request Forgery SSRF attack. Successful exploitation could result in t...

8.6CVSS5.8AI score0.00018EPSS

Exploits0References1

NVD•added 2 days ago•5 views

CVE-2026-20230

A vulnerability in Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME could allow an unauthenticated, remote attacker to conduct server-side request forgery SSRF attacks through an affected device. This vulnerability ...

8.6CVSS0.00018EPSS

Exploits0References1

ATTACKERKB•added 2 days ago•3 views

CVE-2026-20230

8.6CVSS5.8AI score0.00018EPSS

Exploits0References2

Vulnrichment•added 2 days ago•4 views

CVE-2026-20230

8.6CVSS5.8AI score0.00018EPSS

Exploits0References1

CVE•added 2 days ago•15 views

CVE-2026-20230

Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (Unified CM SME) are affected by a server-side request forgery (SSRF) vulnerability arising from improper input validation of certain HTTP requests. An unauthenticated, remote attacker could send a crafted...

8.6CVSS5.8AI score0.00018EPSS

Exploits0References1

Cvelist•added 2 days ago•28 views

CVE-2026-20230

8.6CVSS0.00018EPSS

Exploits0References1

EUVD•added 2 days ago•6 views

EUVD-2026-34137

8.6CVSS5.8AI score0.00018EPSS

Exploits0References1

Cisco•added 2 days ago•5 views

Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability

8.6CVSS5.8AI score0.00018EPSS

Exploits0References1

Positive Technologies•added 2 days ago•7 views

PT-2026-45987

Name of the Vulnerable Software and Affected Versions Cisco Unified Communications Manager Unified CM affected versions not specified Cisco Unified Communications Manager Session Management Edition Unified CM SME affected versions not specified Description An issue in Cisco Unified Communications...

8.6CVSS6AI score0.00018EPSS

Exploits0References34

NVD•added 2013/08/05 1:22 p.m.•12 views

CVE-2013-3450

Cross-site request forgery CSRF vulnerability in the User WebDialer page in Cisco Unified Communications Manager Unified CM allows remote attackers to hijack the authentication of arbitrary users for requests that dial calls, aka Bug ID CSCui13028...

6.8CVSS7.2AI score0.00122EPSS

Exploits0References1

Prion•added 2013/08/05 1:22 p.m.•12 views

Cross site request forgery (csrf)

6.8CVSS7.7AI score0.00122EPSS

Exploits0References1

CVE•added 2013/08/03 1:0 a.m.•40 views

CVE-2013-3450

Cisco Unified Communications Manager's User WebDialer is affected by CVE-2013-3450, a CSRF vulnerability caused by insufficient CSRF protections. An unauthenticated, remote attacker could exploit this to hijack a user’s authenticated session and initiate dialed calls on behalf of the affected use...

6.8CVSS7.4AI score0.00122EPSS

Exploits0References1Affected Software1

Cisco•added 2013/08/02 6:55 p.m.•22 views

Cisco Unified Communications Manager User Web Dialer Cross-Site Request Forgery Vulnerability

A vulnerability in the User WebDialer page of Cisco Unified Communications Manager Unified CM could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack. The vulnerability is due to insufficient CSRF protections. An attacker could exploit this vulnerabilit...

4.3CVSS2.8AI score0.00122EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by