exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2019-12633

больше 6 лет назад

A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. The vulnerability is due to improper validation of user-supplied input on the affected system. An attacker could exploit this vulnerability by sending the user of the web application a crafted request. If the request is processed, the attacker could access the system and perform unauthorized actions.

CVSS3: 7.5

EPSS: Низкий

GHSA-6m2f-gr3g-wqw2

больше 3 лет назад

A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. The vulnerability is due to improper validation of user-supplied input on the affected system. An attacker could exploit this vulnerability by sending the user of the web application a crafted request. If the request is processed, the attacker could access the system and perform unauthorized actions.

CVSS3: 7.5

EPSS: Низкий

BDU:2019-03476

больше 6 лет назад

Уязвимость программного средства автоматизации работы операторов Unified Contact Center Express, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю провести атаку на стороне сервера на целевую систему и выполнить несанкционированные действия

CVSS3: 5.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2019-12633 A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. The vulnerability is due to improper validation of user-supplied input on the affected system. An attacker could exploit this vulnerability by sending the user of the web application a crafted request. If the request is processed, the attacker could access the system and perform unauthorized actions.	CVSS3: 7.5	1% Низкий	больше 6 лет назад
GHSA-6m2f-gr3g-wqw2 A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on a targeted system. The vulnerability is due to improper validation of user-supplied input on the affected system. An attacker could exploit this vulnerability by sending the user of the web application a crafted request. If the request is processed, the attacker could access the system and perform unauthorized actions.	CVSS3: 7.5	1% Низкий	больше 3 лет назад
BDU:2019-03476 Уязвимость программного средства автоматизации работы операторов Unified Contact Center Express, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю провести атаку на стороне сервера на целевую систему и выполнить несанкционированные действия	CVSS3: 5.3	1% Низкий	больше 6 лет назад

Уязвимостей на страницу