Show filters
57 Total Results
Displaying 31-40 of 57
Sort by:
Attacker Value
Unknown

CVE-2015-6360

Disclosure Date: April 21, 2016 (last updated November 25, 2024)
The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.
0
0
Attacker Value
Unknown

CVE-2016-1377

Disclosure Date: April 12, 2016 (last updated November 25, 2024)
Cross-site scripting (XSS) vulnerability in Cisco Unity Connection through 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCus21776.
0
0
Attacker Value
Unknown

CVE-2016-1304

Disclosure Date: January 30, 2016 (last updated November 25, 2024)
Cross-site scripting (XSS) vulnerability in Cisco Unity Connection 10.5(2.3009) allows remote attackers to inject arbitrary web script or HTML via a crafted value, aka Bug ID CSCux82596.
0
0
Attacker Value
Unknown

CVE-2016-1300

Disclosure Date: January 27, 2016 (last updated November 25, 2024)
Cross-site scripting (XSS) vulnerability in Cisco Unity Connection (UC) 10.5(2.3009) allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCux82582.
0
0
Attacker Value
Unknown

CVE-2015-6408

Disclosure Date: December 12, 2015 (last updated October 05, 2023)
Cross-site request forgery (CSRF) vulnerability in Cisco Unity Connection 11.5(0.98) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCux24578.
0
0
Attacker Value
Unknown

CVE-2015-6390

Disclosure Date: December 03, 2015 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unity Connection 9.1(1.10) allows remote attackers to inject arbitrary web script or HTML via a crafted value in a URL, aka Bug ID CSCup92741.
0
0
Attacker Value
Unknown

CVE-2015-6299

Disclosure Date: September 20, 2015 (last updated October 05, 2023)
SQL injection vulnerability in the web interface in Cisco Unity Connection 9.1(1.2) and earlier allows remote authenticated users to execute arbitrary SQL commands via a crafted POST request, aka Bug ID CSCuv63824.
0
0
Attacker Value
Unknown

CVE-2015-0715

Disclosure Date: May 07, 2015 (last updated October 05, 2023)
SQL injection vulnerability in the administrative web interface in Cisco Unified Communications Manager 11.0(0.98000.225) allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug IDs CSCut33447 and CSCut33608.
0
0
Attacker Value
Unknown

CVE-2015-0716

Disclosure Date: May 07, 2015 (last updated October 05, 2023)
Cross-site request forgery (CSRF) vulnerability in the CUCReports page in Cisco Unity Connection 11.0(0.98000.225) and 11.0(0.98000.332) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCut33659.
0
0
Attacker Value
Unknown

CVE-2015-0613

Disclosure Date: April 03, 2015 (last updated October 05, 2023)
The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 before 8.5(1)SU7, 8.6 before 8.6(2a)SU4, 9.x before 9.1(2)SU2, and 10.0 before 10.0(1)SU1, when SIP trunk integration is enabled, allows remote attackers to cause a denial of service (core dump and restart) via crafted SIP INVITE messages, aka Bug ID CSCul20444.
0
0
View More Topics  < Previous  Next >