Vulnerabilities > Cisco > Unified Communications Manager > 9.1.2.10000.28

DATE CVE VULNERABILITY TITLE RISK
2020-09-23 CVE-2020-3135 Cross-Site Request Forgery (CSRF) vulnerability in Cisco Unified Communications Manager
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (UCM) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected device.
network
low complexity
cisco CWE-352
8.8
2020-02-19 CVE-2015-0749 Cross-site Scripting vulnerability in Cisco Unified Communications Manager
A vulnerability in Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on the affected software.
network
low complexity
cisco CWE-79
6.1
2017-09-07 CVE-2017-6791 Unspecified vulnerability in Cisco Unified Communications Manager
A vulnerability in the Trust Verification Service (TVS) of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco
7.5