Latest cisco unified communications manager im and presence service Vulnerabilities

CVE-2024-20253
A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. This vul...
Cisco Unified Communications Manager<12.5\(1\)su8
Cisco Unified Communications Manager>=14.0<14su3
Cisco Unified Communications Manager<12.5\(1\)su8
Cisco Unified Communications Manager>=14.0<14su3
Cisco Unified Communications Manager IM and Presence Service<12.5\(1\)su8
Cisco Unified Communications Manager IM and Presence Service>=14.0<14.0su3
and 6 more
CVE-2023-20242
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified CM Session Management Edition (Unified CM SME), and Cisco Unified Communicatio...
Cisco Unified Communications Manager=11.5\(1\)
Cisco Unified Communications Manager=11.5\(1\)
Cisco Unified Communications Manager=12.5\(1\)
Cisco Unified Communications Manager=12.5\(1\)
Cisco Unified Communications Manager=14.0
Cisco Unified Communications Manager=14.0
and 3 more
CVE-2023-20108
A vulnerability in the XCP Authentication Service of the Cisco Unified Communications Manager IM &amp; Presence Service (Unified CM IM&amp;P) could allow an unauthenticated, remote attacker to cause a...
Cisco Unified Communications Manager IM and Presence Service=12.5\(1\)
Cisco Unified Communications Manager IM and Presence Service=14su
CVE-2022-20791
A vulnerability in the database user privileges of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unifie...
Cisco Unified Communications Manager<=11.5\(1.10000.6\)
Cisco Unified Communications Manager<=11.5\(1.10000.6\)
Cisco Unified Communications Manager>=12.5<=12.5\(1.10000.22\)
Cisco Unified Communications Manager>=12.5<=12.5\(1.10000.22\)
Cisco Unified Communications Manager>=14.0<=14.0\(1.10000.20\)
Cisco Unified Communications Manager>=14.0<=14.0\(1.10000.20\)
and 2 more
CVE-2022-20815
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified CM Session Management Edition (Unified CM SME), and Cisco Unified Communicatio...
Cisco Unified Communications Manager>=14.0<14su2
Cisco Unified Communications Manager>=14.0<14su2
Cisco Unified Communications Manager IM and Presence Service>=11.5\(1\)<11.5\(1\)su11
Cisco Unified Communications Manager IM and Presence Service>=12.5\(1\)<12.5\(1\)su6
Cisco Unified Communications Manager IM and Presence Service>=14.0<14.0su2
CVE-2022-20859
A vulnerability in the Disaster Recovery framework of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager IM &amp; Presence Service (Unified CM IM&amp;P), and Cisco...
Cisco Unified Communications Manager>=14.0<14su2
Cisco Unified Communications Manager IM and Presence Service>=14.0<14.0su2
Cisco Unity Connection>=14.0<14su2
CVE-2022-20800
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unif...
Cisco Unified Communications Manager>=11.5\(1\)<14su2
Cisco Unified Communications Manager>=11.5\(1\)<14su2
Cisco Unified Communications Manager IM and Presence Service>=11.5\(1\)<12.5\(1\)su5
Cisco Unity Connection>=11.5\(1\)<14su2
CVE-2021-44228
Apache Log4j2 Remote Code Execution Vulnerability
debian/apache-log4j1.2
debian/apache-log4j2
debian/apache-log4j2<=2.13.3-1<=2.7-2<=2.11.1-2
Apple Xcode<13.3
Apache Log4j2
redhat/log4j<2.15.0
and 429 more
CVE-2021-34701
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unif...
Cisco Unified Communications Manager<14su1
Cisco Unified Communications Manager<14su1
Cisco Unified Communications Manager IM and Presence Service<14su1
Cisco Unity Connection<14su1
CVE-2021-34773
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco ...
Cisco Unified Communications Manager
Cisco Unified Communications Manager=14.0\(1.10000.20\)
Cisco Unified Communications Manager IM and Presence Service=10.5\(2\)
Cisco Unified Communications Manager IM and Presence Service=11.5\(1\)
Cisco Unified Communications Manager IM and Presence Service=12.5
Cisco Unified Communications Manager IM and Presence Service=14.0
CVE-2021-1365
Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager IM &amp; Presence Service could allow an authenticated, remote attacker to conduct SQL injection ...
Cisco Unified Communications Manager IM and Presence Service>=10.5<11.5\(1\)su9
Cisco Unified Communications Manager IM and Presence Service>=12.0<12.5\(1\)su4
CVE-2021-1355
Multiple vulnerabilities in Cisco Unified Communications Manager IM &amp; Presence Service (Unified CM IM&amp;P) could allow an attacker to conduct path traversal attacks and SQL injection attacks on ...
Cisco Unified Communications Manager<11.5\(1\)su9
Cisco Unified Communications Manager<11.5\(1\)su9
Cisco Unified Communications Manager>=12.0<12.0\(1\)su4
Cisco Unified Communications Manager>=12.0<12.0\(1\)su4
Cisco Unified Communications Manager>=12.5<12.5\(1\)su4
Cisco Unified Communications Manager>=12.5<12.5\(1\)su4
and 2 more
CVE-2021-1364
Multiple vulnerabilities in Cisco Unified Communications Manager IM &amp; Presence Service (Unified CM IM&amp;P) could allow an attacker to conduct path traversal attacks and SQL injection attacks on ...
Cisco Unified Communications Manager<11.5\(1\)su9
Cisco Unified Communications Manager<11.5\(1\)su9
Cisco Unified Communications Manager>=12.0<12.0\(1\)su4
Cisco Unified Communications Manager>=12.0<12.0\(1\)su4
Cisco Unified Communications Manager>=12.5<12.5\(1\)su4
Cisco Unified Communications Manager>=12.5<12.5\(1\)su4
and 2 more
CVE-2021-1282
Multiple vulnerabilities in Cisco Unified Communications Manager IM &amp; Presence Service (Unified CM IM&amp;P) could allow an attacker to conduct path traversal attacks and SQL injection attacks on ...
Cisco Unified Communications Manager<11.5\(1\)su9
Cisco Unified Communications Manager<11.5\(1\)su9
Cisco Unified Communications Manager>=12.0<12.0\(1\)su4
Cisco Unified Communications Manager>=12.0<12.0\(1\)su4
Cisco Unified Communications Manager>=12.5<12.5\(1\)su4
Cisco Unified Communications Manager>=12.5<12.5\(1\)su4
and 2 more
CVE-2020-27121
A vulnerability in Cisco Unified Communications Manager IM &amp; Presence Service (Unified CM IM&amp;P) Software could allow an authenticated, remote attacker to cause the Cisco XCP Authentication Ser...
Cisco Unified Communications Manager IM and Presence Service=12.5\(1\)
CVE-2020-3282
Cisco Unified Communications Manager>=10.5\(2\)<10.5\(2\)su10
Cisco Unified Communications Manager>=10.5\(2\)<10.5\(2\)su10
Cisco Unified Communications Manager>=11.5\(1\)<11.5\(1\)su8
Cisco Unified Communications Manager>=11.5\(1\)<11.5\(1\)su8
Cisco Unified Communications Manager=12.0\(1\)
Cisco Unified Communications Manager=12.0\(1\)
and 10 more
CVE-2019-1915
A vulnerability in the web-based interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition (SME), Cisco Unified Communications Manager IM and P...
Cisco Unified Communications Manager=10.5\(2.10000.5\)
Cisco Unified Communications Manager=11.5\(1.10000.6\)
Cisco Unified Communications Manager=12.0\(1.10000.10\)
Cisco Unified Communications Manager=12.5\(1.10000.22\)
Cisco Unity Connection=11.5
Cisco Unity Connection=12.0
and 3 more
CVE-2019-12707
A vulnerability in the web-based interface of multiple Cisco Unified Communications products could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a us...
Cisco Unified Communications Manager=10.5\(2.10000.5\)
Cisco Unified Communications Manager=11.5\(1.10000.6\)
Cisco Unified Communications Manager=12.0\(1.10000.10\)
Cisco Unified Communications Manager=12.5\(1.10000.22\)
Cisco Unified Communications Manager IM and Presence Service=14.0\(1\)
Cisco Unity Connection=11.5
and 2 more
cisco-sa-20191002-cucm-csrf
Multiple Cisco Unified Communications Products Cross-Site Request Forgery Vulnerability
Cisco Unified Communications Manager=12.5<Apply patch file ciscocm_CSCvo42306_CSRFFix_12_5X_v1.8.cop.sgn or upgrade to 12.5(1)SU1.=12.0<Apply patch file ciscocm_CSCvo42306_CSRFFix_12_0X_v1.8.cop.sgn or upgrade to 12.0(1)SU3.=11.5<Apply patch file ciscocm_CSCvo42306_CSRFFix_11_5X_v1.8.cop.sgn or upgrade to 11.5(1)SU6.=11.0<11.5(1)SU6=10.5(2)<Apply patch file ciscocm_CSCvo42306_CSRFFix_105X_v1.5.cop.sgn or upgrade to 10.5(2)SU9.>=.5(2)<10<10.5(2)SU9
Cisco Unified Communications Manager IM and Presence Service=12.5<Apply patch file ciscocm_CSCvo99233_CSRFFixForCUP_125X.cop.sgn or upgrade to 12.5(1)SU1.=12.0<12.5(1)SU1=11.5<Apply patch file ciscocm_CSCvo99233_CSRFFixForCUP_115X_v2.cop.sgn or upgrade to 11.5(1)SU6.=11.0<11.5(1)SU6=10.5(2)<Apply patch file ciscocm_CSCvo99233_CSRFFixForCUP_1052X.cop.sgn or upgrade to 10.5(2) ES.>=.5(2)<10<10.5(2) ES
Cisco Unity Connection=12.5<Apply patch file ciscocm.CSCvo91541_CSRFFix_12.5x.k3.cop.sgn or upgrade to 12.5(1)SU1.=12.0<Apply patch file ciscocm.CSCvo91541_CSRFFix_12.0x.k3.cop.sgn or upgrade to 12.0(1)SU3.=11.5<Apply patch file ciscocm.CSCvo91541_CSRFFix_11.5x.k3.cop.sgn or upgrade to 11.5(1)SU6.=11.0<11.5(1)SU6=10.5(2)<Apply patch file ciscocm.CSCvo91541_CSRFFix_10.5x.k3.cop.sgn or upgrade to 10.5(2)SU9.>=.5(2)<10<10.5(2)SU9
CVE-2019-1845
Cisco TelePresence Video Communication Server>=x8.1<=x12.5.2
Cisco Unified Communications Manager IM and Presence Service=11.5\(1\)
CVE-2018-15403
A vulnerability in the web interface of Cisco Emergency Responder, Cisco Unified Communications Manager, Cisco Unified Communications Manager IM & Presence Service, and Cisco Unity Connection could al...
Cisco Unified Communications Manager=10.5\(2.10000.5\)
Cisco Unified Communications Manager=11.0\(1.10000.10\)
Cisco Unified Communications Manager=11.5\(1.10000.6\)
Cisco Unified Communications Manager=12.0\(1.10000.10\)
Cisco Unity Connection=9.1\(1\)es23
Cisco Unified Communications Manager IM and Presence Service=10.5\(1\)
and 6 more
CVE-2018-0409
A vulnerability in the XCP Router service of the Cisco Unified Communications Manager IM & Presence Service (CUCM IM&P) and the Cisco TelePresence Video Communication Server (VCS) and Expressway could...
Cisco TelePresence Video Communication Server=x7.0.1
Cisco TelePresence Video Communication Server=x7.2.4
Cisco TelePresence Video Communication Server=x8.1
Cisco TelePresence Video Communication Server=x8.2.2
Cisco TelePresence Video Communication Server=x8.5
Cisco TelePresence Video Communication Server=x8.6
and 7 more
CVE-2018-0396
A vulnerability in the web framework of the Cisco Unified Communications Manager IM and Presence Service software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) ...
Cisco Unified Communications Manager IM and Presence Service=11.5
Cisco Unified Communications Manager IM and Presence Service=12.0
CVE-2018-0363
A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service (formerly CUPS) could allow an unauthenticated, remote attacker to conduct a cross-s...
Cisco Unified Communications Manager IM and Presence Service=11.5\(1\)

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203