Cisco Cisco Enterprise Chat And Email
13 CVEs affecting Cisco Cisco Enterprise Chat And Email. Latest disclosed: 2026-05-06. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-20139 | High | 7.5 | 2025-04-02 | A vulnerability in chat messaging features of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to cause a denial of servic… |
CVE-2024-20484 | High | 7.5 | 2024-11-06 | A vulnerability in the External Agent Assignment Service (EAAS) feature of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacke… |
CVE-2019-1877 | Medium | 6.5 | 2019-11-05 | A vulnerability in the HTTP API of Cisco Enterprise Chat and Email could allow an unauthenticated, remote attacker to download files attached through chat sess… |
CVE-2025-20310 | Medium | 6.1 | 2025-07-02 | A vulnerability in the web UI of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting… |
CVE-2022-20632 | Medium | 6.1 | 2024-11-15 | A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to conduct an XSS attack against a user… |
CVE-2022-20631 | Medium | 6.1 | 2024-11-15 | A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to conduct an XSS attack against a user… |
CVE-2019-1870 | Medium | 6.1 | 2019-06-05 | A vulnerability in the web-based management interface of Cisco Enterprise Chat and Email (ECE) Center could allow an unauthenticated, remote attacker to conduc… |
CVE-2019-1702 | Medium | 6.1 | 2019-03-11 | Multiple vulnerabilities in the web-based management interface of Cisco Enterprise Chat and Email could allow an unauthenticated, remote attacker to conduct a… |
CVE-2024-20367 | Medium | 5.4 | 2024-04-03 | A vulnerability in the web UI of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) at… |
CVE-2022-20802 | Medium | 5.4 | 2022-05-27 | A vulnerability in the web interface of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct a cross-site scripting (… |
CVE-2022-20633 | Medium | 5.3 | 2024-11-15 | A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to perform a username enumeration attac… |
CVE-2022-20634 | Medium | 4.7 | 2024-11-15 | A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to redirect a user to an undesired web… |
CVE-2026-20172 | Medium | 4.3 | 2026-05-06 | A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct browser-based attac… |