threat
engine
.sh
Back
·
··:··
Home
/
Product
/
cisco jabber
Product
cisco jabber
36 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2022-20917
< 14.1.4
A vulnerability in the Extensible Messaging and Presence Protocol (XMPP) message processing feature of Cisco Jabber could allow an
4.3
MEDIUM
CVE-2021-1570
>= 12.9 and < 12.9.6.55898
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for Mac, and Cisco Jabber for mobile platforms could allow an a
6.5
MEDIUM
CVE-2021-1569
>= 12.9 and < 12.9.6.55898
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for Mac, and Cisco Jabber for mobile platforms could allow an a
6.5
MEDIUM
CVE-2021-1418
<= 12.9.0
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an
9.9
CRITICAL
CVE-2021-1417
< 12.1.5
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an
9.9
CRITICAL
CVE-2021-1411
< 12.1.5
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an
9.9
CRITICAL
CVE-2021-1471
<= 12.9.0
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an
9.9
CRITICAL
CVE-2021-1469
< 12.1.5
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an
9.9
CRITICAL
CVE-2020-26085
< 12.9.4
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to
9.9
CRITICAL
CVE-2020-27134
all versions
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to
9.9
CRITICAL
CVE-2020-27133
all versions
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to
9.9
CRITICAL
CVE-2020-27132
all versions
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to
9.9
CRITICAL
CVE-2020-27127
all versions
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to
9.9
CRITICAL
CVE-2020-3537
>= 12.1 and < 12.1.3
A vulnerability in Cisco Jabber for Windows software could allow an authenticated, remote attacker to gain access to sensitive inf
5.7
MEDIUM
CVE-2020-3498
>= 12.1 and < 12.1.3
A vulnerability in Cisco Jabber software could allow an authenticated, remote attacker to gain access to sensitive information. Th
6.5
MEDIUM
CVE-2020-3495
>= 12.1 and < 12.1.3
A vulnerability in Cisco Jabber for Windows could allow an authenticated, remote attacker to execute arbitrary code. The vulnerabi
9.9
CRITICAL
CVE-2020-3430
>= 12.1 and < 12.1.3
A vulnerability in the application protocol handling features of Cisco Jabber for Windows could allow an unauthenticated, remote a
8.8
HIGH
CVE-2020-3155
all versions
A vulnerability in the SSL implementation of the Cisco Intelligent Proximity solution could allow an unauthenticated, remote attac
7.4
HIGH
CVE-2019-12645
< 12.6\(1\)
A vulnerability in Cisco Jabber Client Framework (JCF) for Mac Software, installed as part of the Cisco Jabber for Mac client, cou
7.8
HIGH
CVE-2019-1855
< 12.6\(2\)
A vulnerability in the loading mechanism of specific dynamic link libraries in Cisco Jabber for Windows could allow an authenticat
7.3
HIGH
CVE-2018-0483
all versions
A vulnerability in Cisco Jabber Client Framework (JCF) could allow an authenticated, remote attacker to conduct a cross-site scrip
4.6
MEDIUM
CVE-2018-0449
all versions
A vulnerability in the Cisco Jabber Client Framework (JCF) software, installed as part of the Cisco Jabber for Mac client, could a
4.2
MEDIUM
CVE-2018-0201
all versions
A vulnerability in Cisco Jabber Client Framework (JCF) could allow an authenticated, remote attacker to conduct a cross-site scrip
5.4
MEDIUM
CVE-2018-0199
all versions
A vulnerability in Cisco Jabber Client Framework (JCF) could allow an unauthenticated, remote attacker to conduct a cross-site scr
6.1
MEDIUM
CVE-2017-12361
all versions
A vulnerability in Cisco Jabber for Windows could allow an unauthenticated, local attacker to access sensitive communications made
4.0
MEDIUM
CVE-2017-12358
all versions
A vulnerability in the web-based management interface of Cisco Jabber for Windows, Mac, Android, and iOS could allow an authentica
5.4
MEDIUM
CVE-2017-12356
all versions
A vulnerability in the web-based management interface of Cisco Jabber for Windows, Mac, Android, and iOS could allow an unauthenti
6.1
MEDIUM
CVE-2017-12286
all versions
A vulnerability in the web interface of Cisco Jabber could allow an authenticated, local attacker to retrieve user profile informa
5.5
MEDIUM
CVE-2017-12284
all versions
A vulnerability in the web interface of Cisco Jabber for Windows Client could allow an authenticated, local attacker to retrieve u
5.5
MEDIUM
CVE-2015-6409
all versions
Cisco Jabber 10.6.x, 11.0.x, and 11.1.x on Windows allows man-in-the-middle attackers to conduct STARTTLS downgrade attacks and tr
5.9
MEDIUM
CVE-2015-4218
all versions
The web-based user interface in Cisco Jabber through 9.6(3) and 9.7 through 9.7(5) on Windows allows remote attackers to obtain se
CVE-2014-0666
<= 9.2\(.1\)
Directory traversal vulnerability in the Send Screen Capture implementation in Cisco Jabber 9.2(.1) and earlier on Windows allows
CVE-2013-1228
all versions
Cisco Jabber on Windows does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof ser
CVE-2013-3393
all versions
The Precision Video Engine component in Cisco Jabber for Windows and Cisco Virtualization Experience Media Engine allows remote at
CVE-2008-6937
all versions
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbi
CVE-2008-6936
all versions
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbi
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin