8.6.1

DATE	CVE	VULNERABILITY TITLE	RISK
2020-09-23	CVE-2020-3135	Cross-Site Request Forgery (CSRF) vulnerability in Cisco Unified Communications Manager A vulnerability in the web-based management interface of Cisco Unified Communications Manager (UCM) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected device. network low complexity cisco CWE-352	8.8
2020-02-19	CVE-2015-0749	Cross-site Scripting vulnerability in Cisco Unified Communications Manager A vulnerability in Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on the affected software. network low complexity cisco CWE-79	6.1