threat
engine
.sh
Back
·
··:··
Home
/
Product
/
cisco unified communications manager im and presence service
Product
cisco unified communications manager im and presence service
39 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-20045
>= 12.5 and < 14su5
A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edit
8.2
HIGH
CVE-2025-20330
>= 15.0 and < 15su3
A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service (Unified C
6.1
MEDIUM
CVE-2025-20278
all versions
A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execu
6.0
MEDIUM
CVE-2024-20457
all versions
A vulnerability in the logging component of Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) c
6.5
MEDIUM
CVE-2024-20310
all versions
A vulnerability in the web-based interface of Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could a
6.1
MEDIUM
CVE-2024-20253
< 12.5\(1\)su8
A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an unauthenticated, rem
9.9
CRITICAL
CVE-2023-20242
all versions
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified CM Sessi
4.8
MEDIUM
CVE-2023-20108
all versions
A vulnerability in the XCP Authentication Service of the Cisco Unified Communications Manager IM & Presence Service (Unified C
7.5
HIGH
CVE-2022-20859
>= 14.0 and < 14.0su2
A vulnerability in the Disaster Recovery framework of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communicati
6.5
MEDIUM
CVE-2022-20815
>= 11.5\(1\) and < 11.5\(1\)su11
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified CM Sessi
6.1
MEDIUM
CVE-2022-20800
>= 11.5\(1\) and < 12.5\(1\)su5
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communic
6.1
MEDIUM
CVE-2022-20791
<= 12.5\(1\)
A vulnerability in the database user privileges of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications
6.5
MEDIUM
CVE-2022-20786
>= 11.5\(1\) and < 11.5\(1\)su11
A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service (Unified C
5.4
MEDIUM
CVE-2021-44228
< 11.5\(1\)
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration
10.0
CRITICAL
CVE-2021-34773
all versions
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communic
6.5
MEDIUM
CVE-2021-34701
< 14su1
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communic
4.3
MEDIUM
CVE-2021-1365
>= 10.5 and < 11.5\(1\)su9
Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service c
7.1
HIGH
CVE-2021-1363
>= 10.5 and < 11.5\(1\)su9
Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service c
7.1
HIGH
CVE-2021-1364
< 11.5\(1\)su9
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an at
6.5
MEDIUM
CVE-2021-1357
< 11.5\(1\)su9
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an at
6.5
MEDIUM
CVE-2021-1355
< 11.5\(1\)su9
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an at
6.5
MEDIUM
CVE-2021-1282
< 11.5\(1\)su9
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an at
6.5
MEDIUM
CVE-2020-27121
all versions
A vulnerability in Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) Software could allow an au
4.3
MEDIUM
CVE-2020-3282
>= 10.5\(2\) and < 10.5\(2\)su10
A vulnerability in the web-based management interface of Cisco Unified Communications Manager, Cisco Unified Communications Manage
6.1
MEDIUM
CVE-2019-1915
all versions
A vulnerability in the web-based interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session M
6.5
MEDIUM
CVE-2019-12707
all versions
A vulnerability in the web-based interface of multiple Cisco Unified Communications products could allow an unauthenticated, remot
6.1
MEDIUM
CVE-2019-1845
all versions
A vulnerability in the authentication service of the Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Se
8.6
HIGH
CVE-2018-15403
all versions
A vulnerability in the web interface of Cisco Emergency Responder, Cisco Unified Communications Manager, Cisco Unified Communicati
5.4
MEDIUM
CVE-2018-0409
all versions
A vulnerability in the XCP Router service of the Cisco Unified Communications Manager IM & Presence Service (CUCM IM&P) and the Ci
7.5
HIGH
CVE-2018-0396
all versions
A vulnerability in the web framework of the Cisco Unified Communications Manager IM and Presence Service software could allow an a
6.1
MEDIUM
CVE-2018-0363
all versions
A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service (formerly CUPS
8.8
HIGH
CVE-2017-12337
all versions
A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platfo
9.8
CRITICAL
CVE-2016-6464
all versions
A vulnerability in the web management interface of the Cisco Unified Communications Manager IM and Presence Service could allow an
7.5
HIGH
CVE-2016-1466
all versions
Cisco Unified Communications Manager IM and Presence Service 9.1(1) SU6, 9.1(1) SU6a, 9.1(1) SU7, 10.5(2) SU2, 10.5(2) SU2a, 11.0(
7.5
HIGH
CVE-2015-6310
all versions
The REST interface in Cisco Unified Communications Manager IM and Presence Service 11.5(1) allows remote attackers to cause a deni
CVE-2015-4294
all versions
Cross-site scripting (XSS) vulnerability in Cisco IM and Presence Service before 10.5 MR1 allows remote attackers to inject arbitr
CVE-2015-4222
all versions
SQL injection vulnerability in Cisco Unified Communications Manager IM and Presence Service 9.1(1) allows remote authenticated use
CVE-2015-4221
all versions
Cisco Unified Communications Manager IM and Presence Service 9.1(1) does not properly restrict access to encrypted passwords, whic
CVE-2014-8000
all versions
Cisco Unified Communications Manager IM and Presence Service 9.1(1) produces different returned messages for URL requests dependin
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin