Unified Meetingplace@8.6(1.2) Security Vulnerabilities and Issues — Unified Meetingplace@8.6(1.2) CVE List

Lucene search

CiscoUnified Meetingplace8.6(1.2)

4 matches found

CVE•added 2015/06/04 10:59 a.m.•39 views

CVE-2015-0762

Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified MeetingPlace 8.6(1.2) and 8.6(1.9) for Microsoft Outlook allows remote attackers to inject arbitrary web script or HTML via a crafted value in a URL, aka Bug ID CSCuu51400.

4.3CVSS5.8AI score0.00232EPSS

CVE•added 2015/06/04 10:59 a.m.•39 views

CVE-2015-0763

Cisco Unified MeetingPlace 8.6(1.2) does not properly validate session IDs in http URLs, which allows remote attackers to obtain sensitive session information via a crafted URL, aka Bug ID CSCuu60338.

5CVSS6.3AI score0.00241EPSS

CVE•added 2015/06/24 10:59 a.m.•39 views

CVE-2015-4214

Cisco Unified MeetingPlace 8.6(1.2) and 8.6(1.9) allows remote authenticated users to discover cleartext passwords by reading HTML source code, aka Bug ID CSCuu33050.

4CVSS6.3AI score0.00292EPSS

CVE•added 2015/07/02 10:59 a.m.•39 views

CVE-2015-4233

SQL injection vulnerability in Cisco Unified MeetingPlace 8.6(1.2) allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuu54037.

6.5CVSS8.2AI score0.00495EPSS