Cisco Cisco Unified Contact Center Enterprise
10 CVEs affecting Cisco Cisco Unified Contact Center Enterprise. Latest disclosed: 2026-01-21. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-20253 | Critical | 9.9 | 2024-01-26 | A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an unauthenticated, remote attacker to execute arbit… |
CVE-2024-20404 | High | 7.2 | 2024-06-05 | A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct an SSRF attack on an affected… |
CVE-2020-3163 | Medium | 6.8 | 2020-02-19 | A vulnerability in the Live Data server of Cisco Unified Contact Center Enterprise could allow an unauthenticated, remote attacker to cause a denial of service… |
CVE-2025-20242 | Medium | 6.5 | 2025-05-21 | A vulnerability in the Cloud Connect component of Cisco Unified Contact Center Enterprise (CCE) could allow an unauthenticated, remote attacker to read and mod… |
CVE-2023-20058 | Medium | 6.1 | 2023-01-19 | A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to conduct a reflect… |
CVE-2023-20088 | Medium | 5.3 | 2023-03-03 | A vulnerability in the nginx configurations that are provided as part of the VPN-less reverse proxy for Cisco Finesse could allow an unauthenticated, remote at… |
CVE-2026-20109 | Medium | 4.8 | 2026-01-21 | Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise (Packaged CCE) and Cisco Unified Contact Center Ente… |
CVE-2026-20055 | Medium | 4.8 | 2026-01-21 | Multiple vulnerabilities in the web-based management interface of Cisco Packaged Contact Center Enterprise (Packaged CCE) and Cisco Unified Contact Center Ente… |
CVE-2024-20405 | Medium | 4.8 | 2024-06-05 | A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a stored XSS attack by exploi… |
CVE-2025-20377 | Medium | 4.3 | 2025-11-05 | A vulnerability in the API subsystem of Cisco Unified Intelligence Center could allow an authenticated, remote attacker to obtain sensitive information from an… |