Cisco Unified_intelligence_center
10 CVEs affecting Cisco Unified_intelligence_center. Latest disclosed: 2017-11-16. Critical: 1, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-12337 | Critical | 9.8 | 2017-11-16 | A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platform could allow an unauthentic… |
CVE-2017-12253 | High | 8.8 | 2017-09-21 | A vulnerability in the Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to execute unwanted actions. The vulnerability is due… |
CVE-2016-6427 | High | 8.8 | 2016-10-06 | Cross-site request forgery (CSRF) vulnerability in Cisco Unified Intelligence Center (CUIC) 8.5.4 through 9.1(1), as used in Unified Contact Center Express 10… |
CVE-2016-6426 | High | 7.5 | 2016-10-05 | The j_spring_security_switch_user function in Cisco Unified Intelligence Center (CUIC) 8.5.4 through 9.1(1), as used in Unified Contact Center Express 10.0(1)… |
CVE-2017-12254 | Medium | 6.1 | 2017-09-21 | A vulnerability in the web interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to perform a Document Object Model (D… |
CVE-2017-12248 | Medium | 6.1 | 2017-09-21 | A vulnerability in the web framework code of Cisco Unified Intelligence Center Software could allow an unauthenticated, remote attacker to conduct a cross-site… |
CVE-2017-6789 | Medium | 6.1 | 2017-09-07 | A vulnerability in the Cisco Unified Intelligence Center web interface could allow an unauthenticated, remote attacker to impact the integrity of the system by… |
CVE-2016-6425 | Medium | 6.1 | 2016-10-06 | Cross-site scripting (XSS) vulnerability in Cisco Unified Intelligence Center (CUIC) 8.5.4 through 9.1(1), as used in Unified Contact Center Express 10.0(1) th… |
CVE-2015-4274 | | 2015-07-16 | Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified Intelligence Center 10.0(1) and 10.6(1) allows remote attackers to hijack… | |
CVE-2015-0740 | | 2015-05-20 | Cross-site request forgery (CSRF) vulnerability in Cisco Unified Intelligence Center 10.6(1) allows remote attackers to hijack the authentication of arbitrary… |