Unified communications domain manager
This hub aggregates every CVE we track for Unified communications domain manager, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
43
CVEs tracked
4
Critical
2
High
0
In CISA KEV
Severity distribution
MEDIUM37CRITICAL4HIGH2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Unified communications domain manager.
- CVE-2019-15968Cisco Unified Communications Domain Manager Persistent Cross-Site Scripting Vulnerability5.4
- CVE-2019-1911Cisco Unified Communications Domain Manager Restricted Shell Escape Vulnerability5.3
- CVE-2018-0386A vulnerability in Cisco Unified Communications Domain Manager Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on an affected system. The vul...6.1
- CVE-2018-0364A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) a...8.8
- CVE-2018-0124A vulnerability in Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to bypass security protections, gain elevated privileges, and execute arbitrary code. ...9.8
- CVE-2017-12302A vulnerability in the Cisco Unified Communications Manager SQL database interface could allow an authenticated, remote attacker to impact the confidentiality of the system by executing arbitrary S...4.3
- CVE-2017-6668Vulnerabilities in the web-based GUI of Cisco Unified Communications Domain Manager (CUCDM) could allow an authenticated, remote attacker to impact the confidentiality of the system by executing ar...4.9
- CVE-2017-6670A vulnerability in the web-based GUI of Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to redirect a user to a malicious web page, aka an Open Redirect ...6.1
- CVE-2016-1354Cross-site scripting (XSS) vulnerability in Cisco Unified Communications Domain Manager (UCDM) 8.x before 8.1.1 allows remote attackers to inject arbitrary web script or HTML via crafted markup dat...6.1
- CVE-2015-6420Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devi...9.8
- CVE-2015-6422The self-service application in Cisco Unified Communications Domain Manager (CUCDM) 10.6(1) allows remote authenticated users to cause a denial of service (subapplication outage) via malformed requ...4.0
- CVE-2015-6352Cisco Unified Communications Domain Manager before 10.6(1) provides different error messages for pathname access attempts depending on whether the pathname exists, which allows remote attackers to ...4.3
- CVE-2015-4196Platform Software before 4.4.5 in Cisco Unified Communications Domain Manager (CDM) 8.x has a hardcoded password for a privileged account, which allows remote attackers to obtain root access by lev...5.0
- CVE-2015-4229The web framework in Cisco Unified Communications Domain Manager 8.1(4)ER1 allows remote attackers to obtain sensitive information by visiting a bvsmweb URL, aka Bug ID CSCuq22589.5.0
- CVE-2015-0699SQL injection vulnerability in the Interactive Voice Response (IVR) component in Cisco Unified Communications Manager (UCM) 10.5(1.98991.13) allows remote attackers to execute arbitrary SQL command...5.0
Product normalization is registry-driven with AI assist and human review. How it works