Shodan
Vulnerabilities
Vulnerable Software
Cisco:  >> Unified Presence Server  >> 1.0(3)  Security Vulnerabilities
CVE-2014-3339
Multiple SQL injection vulnerabilities in the administrative web interface in Cisco Unified Communications Manager (CM) and Cisco Unified Presence Server (CUPS) allow remote authenticated users to execute arbitrary SQL commands via crafted input to unspecified pages, aka Bug ID CSCup74290.
CVSS Score
6.5
EPSS Score
0.004
Published
2014-08-12
CVE-2014-3328
The Intercluster Sync Agent Service in Cisco Unified Presence Server allows remote attackers to cause a denial of service via a TCP SYN flood, aka Bug ID CSCun34125.
CVSS Score
5.0
EPSS Score
0.01
Published
2014-07-26
CVE-2013-6983
SQL injection vulnerability in the web interface in Cisco Unified Presence Server allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuh35615.
CVSS Score
6.5
EPSS Score
0.011
Published
2013-12-31
CVE-2013-1242
Memory leak in the web framework in the server in Cisco Unified Presence (CUP) allows remote attackers to cause a denial of service (memory consumption) via malformed TCP packets, aka Bug ID CSCug38080.
CVSS Score
5.0
EPSS Score
0.004
Published
2013-05-10
CVE-2009-2874
The TimesTenD process in Cisco Unified Presence 1.x, 6.x before 6.0(6), and 7.x before 7.0(4) allows remote attackers to cause a denial of service (process crash) via a large number of TCP connections to ports 16200 and 22794, aka Bug ID CSCsy17662.
CVSS Score
7.8
EPSS Score
0.028
Published
2009-10-16
CVE-2008-1158
The Presence Engine (PE) service in Cisco Unified Presence before 6.0(1) allows remote attackers to cause a denial of service (core dump and service interruption) via malformed packets, aka Bug ID CSCsh50164.
CVSS Score
7.8
EPSS Score
0.019
Published
2008-05-16
CVE-2007-3775
Unspecified vulnerability in Cisco Unified Communications Manager (CUCM, formerly CallManager) and Unified Presence Server (CUPS) allows remote attackers to cause a denial of service (loss of cluster services) via unspecified vectors, aka (1) CSCsj09859 and (2) CSCsj19985.
CVSS Score
7.8
EPSS Score
0.015
Published
2007-07-15
CVE-2007-3776
Cisco Unified Communications Manager (CUCM, formerly CallManager) and Unified Presence Server (CUPS) allow remote attackers to obtain sensitive information via unspecified vectors that reveal the SNMP community strings and configuration settings, aka (1) CSCsj20668 and (2) CSCsj25962.
CVSS Score
5.0
EPSS Score
0.005
Published
2007-07-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved