Cisco Unity Express Vulnerabilità

Sequenza temporale

Versione

2.02
2.2(2)1

Contromisure

Official Fix4
Temporary Fix0
Workaround1
Unavailable0
Not Defined1

Sfruttabilità

High0
Functional0
Proof-of-Concept3
Unproven0
Not Defined3

Accesso al vettore

Not Defined0
Physical0
Local1
Adjacent0
Network5

Autenticazione

Not Defined0
High0
Low2
None4

Interazione dell'utente

Not Defined0
Required2
None4

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤41
≤51
≤60
≤71
≤82
≤90
≤101

CVSSv3 Temp

≤10
≤20
≤31
≤41
≤50
≤61
≤71
≤81
≤90
≤101

VulDB

≤10
≤20
≤30
≤41
≤51
≤60
≤71
≤82
≤90
≤101

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤71
≤80
≤90
≤101

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤71
≤80
≤90
≤101

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k0
<5k0
<10k2
<25k4
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k5
<2k0
<5k0
<10k1
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (2): 2.0, 2.2(2)

Link to Product Website: https://www.cisco.com/

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
26/11/20197.17.0Cisco Unity Express CLI escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2019-15986
08/11/20189.89.8Cisco Unity Express escalazione di privilegi$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2018-15381
13/02/20134.33.9Cisco Unity Express Software cross site scripting$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-1114
06/02/20136.35.7Cisco Unity Express Software cross site request forgery$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.02CVE-2013-1120
02/05/20063.12.9Cisco Unity Express HTTP Management Interface denial of service$5k-$25k$0-$5kProof-of-ConceptWorkaround0.00CVE-2006-2166
24/05/20057.57.2Cisco Unity Express DNS Packet Compression denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2005-0036

altre voci di Cisco

PrecedenteVisione D'insiemeIl prossimo

Do you know our Splunk app?

Download it now for free!