Cisco Cisco Finesse
8 CVEs affecting Cisco Cisco Finesse. Latest disclosed: 2026-06-03. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-20404 | High | 7.2 | 2024-06-05 | A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct an SSRF attack on an affected… |
CVE-2026-20175 | Medium | 6.1 | 2026-06-03 | A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to load arbitrary files from remote locations into an active user session on a… |
CVE-2020-3159 | Medium | 6.1 | 2020-02-19 | A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS)… |
CVE-2019-15278 | Medium | 6.1 | 2020-01-26 | A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to bypass authorization and access sensi… |
CVE-2025-20278 | Medium | 6.0 | 2025-06-04 | A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execute arbitrary commands on the… |
CVE-2019-12632 | Medium | 5.3 | 2019-09-05 | A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) att… |
CVE-2025-20112 | Medium | 5.1 | 2025-05-21 | A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileg… |
CVE-2024-20405 | Medium | 4.8 | 2024-06-05 | A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a stored XSS attack by exploi… |