Known Vulnerabilities for Unity Connection by Cisco

Listed below are 10 of the newest known vulnerabilities associated with "Unity Connection" by "Cisco".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2022-20859 A vulnerability in the Disaster Recovery framework of Cisco Unified Communications Manager (Unified CM), Cisco Unified Commun... 8.8 - HIGH 2022-07-06 2022-07-14
CVE-2022-20800 A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Com... 6.1 - MEDIUM 2022-07-06 2022-07-14
CVE-2022-20788 A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified CM ... 6.1 - MEDIUM 2022-04-21 2022-05-04
CVE-2022-20752 A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management... 5.3 - MEDIUM 2022-07-06 2022-07-14
CVE-2021-34701 A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Com... 4.3 - MEDIUM 2021-11-04 2021-11-06
CVE-2021-1409 Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Un... 6.1 - MEDIUM 2021-04-08 2021-04-16
CVE-2021-1380 Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Un... 6.1 - MEDIUM 2021-04-08 2021-04-13
CVE-2021-1362 A vulnerability in the SOAP API endpoint of Cisco Unified Communications Manager, Cisco Unified Communications Manager Sessio... 8.8 - HIGH 2021-04-08 2021-04-15
CVE-2021-1226 A vulnerability in the audit logging component of Cisco Unified Communications Manager, Cisco Unified Communications Manager ... 6.5 - MEDIUM 2021-01-13 2021-01-19
CVE-2020-3129 A vulnerability in the web-based management interface of Cisco Unity Connection Software could allow an authenticated, remote... 4.8 - MEDIUM 2020-01-26 2020-01-28

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationCiscoUnity Connectionvmo-11.5\(1\)AllAllAll
ApplicationCiscoUnity Connection9.5AllAllAll
ApplicationCiscoUnity Connection9.1\(1.10\)AllAllAll
ApplicationCiscoUnity Connection9.0AllAllAll
ApplicationCiscoUnity Connection8.6_baseAllAllAll
ApplicationCiscoUnity Connection8.6\(2a\)AllAllAll
ApplicationCiscoUnity Connection8.6\(1a\)AllAllAll
ApplicationCiscoUnity Connection8.6.2AllAllAll
ApplicationCiscoUnity Connection8.6AllAllAll
ApplicationCiscoUnity Connection8.6\(1\)AllAll
ApplicationCiscoUnity Connection8.6\(2\)AllAll
ApplicationCiscoUnity Connection8.6\(2a\)su1AllAll
ApplicationCiscoUnity Connection8.6\(2a\)su2AllAll
ApplicationCiscoUnity Connection8.6\(2a\)su3AllAll
ApplicationCiscoUnity Connection8.5_baseAllAllAll
ApplicationCiscoUnity Connection8.5\(1\)su6AllAllAll
ApplicationCiscoUnity Connection8.5\(1\)su3AllAllAll
ApplicationCiscoUnity Connection8.5\(1\)su2AllAllAll
ApplicationCiscoUnity Connection8.5\(1\)su1AllAllAll
ApplicationCiscoUnity Connection8.5\(1\)AllAllAll

Popular searches for Unity Connection

Cisco Unity Connection

www.cisco.com/c/en/us/products/unified-communications/unity-connection

Cisco Unity Connection With Cisco Unity Connection j h f, manage voice messages by email, web clients, mobile devices, instant messaging, and desktop clients.

www.cisco.com/c/en/us/products/unified-communications/unity-connection/index.html www.cisco.com/c/en/us/products/unified-communications/unity-connection/index.html www.cisco.com/en/US/products/ps6509/index.html www.cisco.com/en/US/products/ps6509/index.html www.cisco.com/c/en/us/products/unified-communications/unity-connection/bulletin-listing.html www.cisco.com/c/en/us/products/unified-communications/unity-connection/index.html Cisco Systems Unity (game engine) Client (computing) Unified messaging User (computing) Application software Instant messaging Information technology Speech recognition Mobile device Email Message passing Solution Software deployment Unity (user interface) Video Collaborative software Computer hardware Smartphone Desktop computer

Cisco Security Advisory: Cisco Unity Connection User Search Cross-Site Scripting Vulnerability

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160128-uc

Cisco Security Advisory: Cisco Unity Connection User Search Cross-Site Scripting Vulnerability B @ >A vulnerability in the HTTP web-based management interface of Cisco Unity Connection could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the affected system's web interface. The vulnerability is due to insufficient input validation of a user-supplied value. An attacker could exploit this vulnerability by convincing a user to click on a specific link. Cisco CiscoSecurityAdvisory/ isco -sa-20160128-uc

Cisco Systems Vulnerability (computing) User (computing) Cross-site scripting Unity (game engine) Computer security Security hacker Exploit (computer security) Web application Hypertext Transfer Protocol Data validation Security Management interface Patch (computing) User interface Software Information Common Vulnerabilities and Exposures Unity (user interface) Common Weakness Enumeration

© CVE.report 2022 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report