Unity Connection@8.6(1a) Security Vulnerabilities and Issues — Unity Connection@8.6(1a) CVE List

Lucene search

CiscoUnity Connection8.6(1a)

8 matches found

CVE•added 2016/04/21 10:59 a.m.•106 views

CVE-2015-6360

The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.

7.8CVSS7.1AI score0.12366EPSS

CVE•added 2015/04/03 6:59 p.m.•55 views

CVE-2015-0613

The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 before 8.5(1)SU7, 8.6 before 8.6(2a)SU4, 9.x before 9.1(2)SU2, and 10.0 before 10.0(1)SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service (core dump and restart) via ...

7.1CVSS6.7AI score0.00399EPSS

CVE•added 2015/04/03 6:59 p.m.•51 views

CVE-2015-0612

The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 before 8.5(1)SU6, 8.6 before 8.6(2a)SU4, and 9.x before 9.1(2)SU2, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service (SIP outage) via a crafted UDP packet, aka Bug ID CS...

7.1CVSS6.6AI score0.00399EPSS

CVE•added 2015/04/03 6:59 p.m.•50 views

CVE-2015-0614

7.1CVSS6.7AI score0.00399EPSS

CVE•added 2015/04/03 6:59 p.m.•45 views

CVE-2015-0616

The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 before 8.5(1)SU7, 8.6 before 8.6(2a)SU4, and 9.x before 9.1(2)SU2, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service (core dump and restart) by improperly terminating SI...

7.1CVSS6.7AI score0.00399EPSS

CVE•added 2015/04/03 6:59 p.m.•44 views

CVE-2015-0615

The call-handling implementation in Cisco Unity Connection 8.5 before 8.5(1)SU7, 8.6 before 8.6(2a)SU4, 9.x before 9.1(2)SU2, and 10.0 before 10.0(1)SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service (port consumption) by improperly terminating SIP sess...

7.1CVSS6.7AI score0.00399EPSS

CVE•added 2012/03/01 1:55 a.m.•43 views

CVE-2012-0367

Cisco Unity Connection before 7.1.5b(Su5), 8.0 and 8.5 before 8.5.1(Su3), and 8.6 before 8.6.2 allows remote attackers to cause a denial of service (services crash) via a series of crafted TCP segments, aka Bug ID CSCtq67899.

7.8CVSS6.7AI score0.03552EPSS

CVE•added 2014/04/02 3:58 a.m.•36 views

CVE-2014-2125

Cross-site scripting (XSS) vulnerability in the Web Inbox in Cisco Unity Connection 8.6(2a)SU3 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCui33028.

4.3CVSS5.9AI score0.00322EPSS