threat
engine
.sh
Back
·
··:··
Home
/
Product
/
cisco unified communications domain manager
Product
cisco unified communications domain manager
41 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2019-15968
all versions
A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager (Unified CDM) could allow an
5.4
MEDIUM
CVE-2018-0386
all versions
A vulnerability in Cisco Unified Communications Domain Manager Software could allow an unauthenticated, remote attacker to conduct
6.1
MEDIUM
CVE-2018-0364
all versions
A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager could allow an unauthenticate
8.8
HIGH
CVE-2018-0124
< 11.5\(2\)
A vulnerability in Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to bypass security
9.8
CRITICAL
CVE-2017-12302
all versions
A vulnerability in the Cisco Unified Communications Manager SQL database interface could allow an authenticated, remote attacker t
4.3
MEDIUM
CVE-2017-6670
all versions
A vulnerability in the web-based GUI of Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacke
6.1
MEDIUM
CVE-2017-6668
all versions
Vulnerabilities in the web-based GUI of Cisco Unified Communications Domain Manager (CUCDM) could allow an authenticated, remote a
4.9
MEDIUM
CVE-2016-1354
all versions
Cross-site scripting (XSS) vulnerability in Cisco Unified Communications Domain Manager (UCDM) 8.x before 8.1.1 allows remote atta
6.1
MEDIUM
CVE-2015-6422
all versions
The self-service application in Cisco Unified Communications Domain Manager (CUCDM) 10.6(1) allows remote authenticated users to c
CVE-2015-6352
all versions
Cisco Unified Communications Domain Manager before 10.6(1) provides different error messages for pathname access attempts dependin
CVE-2015-4196
all versions
Platform Software before 4.4.5 in Cisco Unified Communications Domain Manager (CDM) 8.x has a hardcoded password for a privileged
CVE-2015-4229
all versions
The web framework in Cisco Unified Communications Domain Manager 8.1(4)ER1 allows remote attackers to obtain sensitive information
CVE-2015-0699
all versions
SQL injection vulnerability in the Interactive Voice Response (IVR) component in Cisco Unified Communications Manager (UCM) 10.5(1
CVE-2015-0684
all versions
SQL injection vulnerability in the Image Management component in Cisco Unified Communications Domain Manager 8.1(4) allows remote
CVE-2015-0683
all versions
Cisco Unified Communications Domain Manager 8.1(4) allows remote authenticated users to obtain sensitive information via a file-in
CVE-2015-0682
all versions
Cisco Unified Communications Domain Manager 8.1(4) allows remote authenticated users to execute arbitrary code by visiting a "depr
CVE-2015-0591
all versions
Cisco Unified Communications Domain Manager (UCDM) 10 allows remote attackers to cause a denial of service (daemon hang and GUI ou
CVE-2015-0588
all versions
Cross-site request forgery (CSRF) vulnerability in Cisco Unified Communications Domain Manager (UCDM) 10 allows remote attackers t
CVE-2014-8020
all versions
Cisco Unified Communication Domain Manager Platform Software allows remote attackers to cause a denial of service (CPU consumption
CVE-2014-8018
all versions
Multiple cross-site scripting (XSS) vulnerabilities in Business Voice Services Manager (BVSM) pages in the Application Software in
CVE-2014-8010
all versions
The web framework in Cisco Unified Communications Domain Manager 8 allows remote authenticated administrators to execute arbitrary
CVE-2014-3339
all versions
Multiple SQL injection vulnerabilities in the administrative web interface in Cisco Unified Communications Manager (CM) and Cisco
CVE-2014-3337
<= 8.6\(.2\)
The SIP implementation in Cisco Unified Communications Manager (CM) 8.6(.2) and earlier allows remote authenticated users to cause
CVE-2014-3320
<= 8.1\(.4\)
Multiple open redirect vulnerabilities in the admin web interface in the web framework in Cisco Unified Communications Domain Mana
CVE-2014-3300
all versions
The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager (CDM) in Unified CDM Application Software b
CVE-2014-2198
all versions
Cisco Unified Communications Domain Manager (CDM) in Unified CDM Platform Software before 4.4.2 has a hardcoded SSH private key, w
CVE-2014-2197
all versions
The Administration GUI in the web framework in Cisco Unified Communications Domain Manager (CDM) in Unified CDM Application Softwa
CVE-2014-3281
all versions
The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which a
CVE-2014-3278
all versions
The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which a
CVE-2014-3280
<= 9.0\(.1\)
The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement acc
CVE-2014-3283
<= 9.0\(.1\)
Open redirect vulnerability in Self-Care Client Portal applications in the web framework in VOSS in Cisco Unified Communications D
CVE-2014-3282
<= 9.0\(.1\)
The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does
CVE-2014-3279
<= 9.0\(.1\)
The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does
CVE-2014-3277
<= 9.0\(.1\)
The Administration GUI in the web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does
CVE-2014-2104
all versions
Multiple cross-site scripting (XSS) vulnerabilities in the Business Voice Services Manager (BVSM) page in Cisco Unified Communicat
CVE-2013-5517
all versions
SQL injection vulnerability in the web framework in Cisco Unified Communications Domain Manager allows remote authenticated users
CVE-2013-3418
all versions
Cisco Unified Communications Domain Manager does not properly allocate memory for GET and POST requests, which allows remote authe
CVE-2013-1132
all versions
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Communications Domain Manager allow remote attackers to injec
CVE-2013-1230
all versions
Cisco Unified Communications Domain Manager allows remote attackers to cause a denial of service (CPU consumption) via a flood of
CVE-2013-1227
all versions
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Unified Communications Domain Manager allows remote attacke
CVE-2013-1113
all versions
Cross-site scripting (XSS) vulnerability in Cisco Unified Communications Domain Manager allows remote attackers to inject arbitrar
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin