Lucene search
K
CiscoVirtualized Voice Browser

5 matches found

CVE
CVE
added 2021/12/10 12:0 a.m.6775 views

CVE-2021-44228

CVE-2021-44228 (Log4Shell) affects Apache Log4j2 2.0-beta9 through 2.15.0 (excluding some security releases) and is specific to log4j-core. The vulnerability arises from JNDI features used in configuration, log messages, and parameters, which can be exploited when an attacker can control log mess...

10CVSS10AI score0.99999EPSS
In wild
CVE
CVE
added 2024/01/26 5:28 p.m.148 views

CVE-2024-20253

CVE-2024-20253 affects Cisco Unified Communications Manager and related UC/Contact Center products. The root cause is improper processing of user-supplied data read into memory, enabling an unauthenticated, remote attacker to send a crafted message to a listening port and execute arbitrary comman...

10CVSS9.6AI score0.02057EPSS
CVE
CVE
added 2018/06/07 12:0 p.m.68 views

CVE-2017-6779

CVE-2017-6779 affects multiple Cisco VOS-based products (Emergency Responder, Finesse, UCM family, Unity Connection, UIC, SME, UCCx, MediaSense, Prime products, and related). Root cause: system log file has no maximum size limit, enabling an unauthenticated, remote attacker to cause high disk uti...

7.8CVSS7.5AI score0.01984EPSS
CVE
CVE
added 2025/06/04 4:18 p.m.68 views

CVE-2025-20278

CVE-2025-20278 affects Cisco Unified Communications products. The vulnerability is a command-injection flaw in the CLI due to insufficient validation of command arguments, allowing an authenticated local attacker to execute arbitrary OS commands as root on an affected device. Exploitation require...

6.7CVSS7.6AI score0.00156EPSS
CVE
CVE
added 2021/07/08 6:30 p.m.63 views

CVE-2021-1575

The CVE-2021-1575 issue affects Cisco Virtualized Voice Browser (VVB) in its web-based management interface. The root cause is improper validation of user-supplied input in the interface, enabling unauthenticated, remote attackers to perform cross-site scripting by convincing a user to click a cr...

6.1CVSS6AI score0.00813EPSS