The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Cisco Unity

Cisco Unity: directory traversal
An attacker can traverse directories of Cisco Unity, in order to read a file outside the service root path...
cisco-sa-cuc-dirtrv-M9HpnME4, CVE-2020-3130, VIGILANCE-VUL-33396
Cisco Unity Express: privilege escalation via CLI
An attacker can bypass restrictions via CLI of Cisco Unity Express, in order to escalate his privileges...
cisco-sa-20191120-unity-exp-comm-inject, CSCvq54120, CVE-2019-15986, VIGILANCE-VUL-30929
Cisco: denial of service via Log File Size
An attacker can generate a fatal error via Log File Size of Cisco, in order to trigger a denial of service...
CERTFR-2018-AVI-270, cisco-sa-20180606-diskdos, CVE-2017-6779, VIGILANCE-VUL-26343
Cisco Unity Connection: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco Unity Connection, in order to run JavaScript code in the context of the web site...
CERTFR-2018-AVI-270, cisco-sa-20180606-cuc-xss, CSCvf76417, CVE-2018-0354, VIGILANCE-VUL-26341
NTP.org: multiple vulnerabilities
An attacker can use several vulnerabilities of NTP.org...
2009389, bulletinoct2016, CERTFR-2017-AVI-090, cisco-sa-20161123-ntpd, CVE-2016-7426, CVE-2016-7427, CVE-2016-7428, CVE-2016-7429, CVE-2016-7431, CVE-2016-7433, CVE-2016-7434, CVE-2016-9310, CVE-2016-9311, CVE-2016-9312, DSA-2020-289, FEDORA-2016-7209ab4e02, FEDORA-2016-c198d15316, FEDORA-2016-e8a8561ee7, FreeBSD-SA-16:39.ntp, HPESBHF03883, HPESBUX03706, HPESBUX03885, JSA10776, JSA10796, K51444934, K55405388, K87922456, MBGSA-1605, NTAP-20170127-0001, NTAP-20170310-0002, NTAP-20180201-0001, openSUSE-SU-2016:3280-1, pfSense-SA-17_03.webgui, RHSA-2017:0252-01, SA139, SSA:2016-326-01, TALOS-2016-0130, TALOS-2016-0131, TALOS-2016-0203, TALOS-2016-0204, USN-3349-1, VIGILANCE-VUL-21170, VU#633847
NTP.org: multiple vulnerabilities
An attacker can use several vulnerabilities of NTP.org...
bulletinapr2016, bulletinapr2019, c05270839, CERTFR-2016-AVI-153, CERTFR-2017-AVI-365, CERTFR-2018-AVI-545, cisco-sa-20160428-ntpd, cpujan2018, CTX220112, CVE-2015-7704, CVE-2015-8138, CVE-2016-1547, CVE-2016-1548, CVE-2016-1549, CVE-2016-1550, CVE-2016-1551, CVE-2016-2516, CVE-2016-2517, CVE-2016-2518, CVE-2016-2519, DLA-559-1, DSA-2020-289, DSA-3629-1, FEDORA-2016-5b2eb0bf9c, FEDORA-2016-777d838c1b, FEDORA-2018-70c191d84a, FEDORA-2018-de113aeac6, FreeBSD-SA-16:16.ntp, HPESBHF03750, HPSBHF03646, JSA10776, JSA10796, JSA10824, JSA10826, JSA10898, K11251130, K20804323, K24613253, K43205719, K63675293, MBGSA-1602, openSUSE-SU-2016:1292-1, openSUSE-SU-2016:1329-1, openSUSE-SU-2016:1423-1, openSUSE-SU-2018:0970-1, PAN-SA-2016-0019, RHSA-2016:1141-01, RHSA-2016:1552-01, SB10164, SOL11251130, SOL20804323, SOL24613253, SOL41613034, SOL43205719, SOL45427159, SOL61200338, SOL63675293, SSA:2016-120-01, STORM-2016-003, STORM-2016-004, SUSE-SU-2016:1175-1, SUSE-SU-2016:1177-1, SUSE-SU-2016:1247-1, SUSE-SU-2016:1278-1, SUSE-SU-2016:1291-1, SUSE-SU-2016:1311-1, SUSE-SU-2016:1471-1, SUSE-SU-2016:1912-1, SUSE-SU-2016:2094-1, SUSE-SU-2018:1464-1, SUSE-SU-2018:1765-1, Synology-SA-18:13, Synology-SA-18:14, TALOS-2016-0081, TALOS-2016-0082, TALOS-2016-0083, TALOS-2016-0084, TALOS-2016-0132, USN-3096-1, USN-3349-1, VIGILANCE-VUL-19477, VU#718152
Cisco Unity: Cross Site Scripting of recherche
An attacker can trigger a Cross Site Scripting in the search function of Cisco Unity, in order to run JavaScript code in the context of the web site...
CERTFR-2016-AVI-042, cisco-sa-20160128-uc, CVE-2016-1304, VIGILANCE-VUL-18843
Cisco Unity Connection: Cross Site Scripting
An attacker can trigger a Cross Site Scripting, in order to run JavaScript code in the context of the web site...
CERTFR-2016-AVI-040, cisco-sa-20160127-uc, CVE-2016-1300, VIGILANCE-VUL-18834
Cisco Unity Connection: Cross Site Request Forgery
An attacker can trigger a Cross Site Request Forgery of Cisco Unity Connection, in order to force the victim to perform operations...
cisco-sa-20151209-uc, CSCux24578, CVE-2015-6408, VIGILANCE-VUL-18491
Cisco Unity Connection: Cross Site Scripting of Management Interface
An attacker can trigger a Cross Site Scripting in Management Interface of Cisco Unity Connection, in order to run JavaScript code in the context of the web site...
CERTFR-2015-AVI-515, cisco-sa-20151202-pca, CSCup92741, CSCux34306, CVE-2015-6390, VIGILANCE-VUL-18431
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco Unity: