Unified Communications Manager Security Vulnerabilities and Issues — Unified Communications Manager CVE List

Lucene search

CiscoUnified Communications Manager

5 matches found

CVE•added 2014/10/31 10:55 a.m.•42 views

CVE-2014-3372

Multiple cross-site scripting (XSS) vulnerabilities in the CCM reports interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90589.

4.3CVSS5.9AI score0.00442EPSS

CVE•added 2014/10/31 10:55 a.m.•40 views

CVE-2014-3374

Multiple cross-site scripting (XSS) vulnerabilities in the CCM admin interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90582.

4.3CVSS5.9AI score0.00499EPSS

CVE•added 2014/10/31 10:55 a.m.•36 views

CVE-2014-3373

Multiple cross-site scripting (XSS) vulnerabilities in the CCM Dialed Number Analyzer interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCup92550.

4.3CVSS5.9AI score0.00499EPSS

CVE•added 2014/10/31 10:55 a.m.•35 views

CVE-2014-3366

SQL injection vulnerability in the administrative web interface in Cisco Unified Communications Manager allows remote authenticated users to execute arbitrary SQL commands via a crafted response, aka Bug ID CSCup88089.

6.5CVSS8.1AI score0.00279EPSS

CVE•added 2014/10/31 10:55 a.m.•33 views

CVE-2014-3375

Multiple cross-site scripting (XSS) vulnerabilities in the CCM Service interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90597.

4.3CVSS5.9AI score0.00532EPSS