CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-3373
https://notcve.org/view.php?id=CVE-2014-3373
Multiple cross-site scripting (XSS) vulnerabilities in the CCM Dialed Number Analyzer interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCup92550. Múltiples vulnerabilidades de XSS en la interfaz del analizador del número marcado de CCM en el servidor en Cisco Unified Communications Manager permiten a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de parámetros no especificados, también conocido como Bug ID CSCup92550. • http://secunia.com/advisories/59692 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3373 http://tools.cisco.com/security/center/viewAlert.x?alertId=36294 http://www.securityfocus.com/bid/70848 http://www.securitytracker.com/id/1031161 https://exchange.xforce.ibmcloud.com/vulnerabilities/98406 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-3366
https://notcve.org/view.php?id=CVE-2014-3366
SQL injection vulnerability in the administrative web interface in Cisco Unified Communications Manager allows remote authenticated users to execute arbitrary SQL commands via a crafted response, aka Bug ID CSCup88089. Vulnerabilidad de inyección SQL en la interfaz web administrativa en Cisco Unified Communications Manager permite a usuarios remotos autenticados ejecutar comandos SQL arbitrarios a través de una respuesta manipulada, también conocido como Bug ID CSCup88089. • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3366 http://www.securityfocus.com/bid/70855 http://www.securitytracker.com/id/1031160 https://exchange.xforce.ibmcloud.com/vulnerabilities/98405 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-3372
https://notcve.org/view.php?id=CVE-2014-3372
Multiple cross-site scripting (XSS) vulnerabilities in the CCM reports interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90589. Múltiples vulnerabilidades de XSS en la interfaz de informes CCM en el servidor en Cisco Unified Communications Manager permiten a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de parámetros no especificados, también conocido como Bug ID CSCuq90589. • http://secunia.com/advisories/61003 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3372 http://tools.cisco.com/security/center/viewAlert.x?alertId=36292 http://www.securityfocus.com/bid/70846 http://www.securitytracker.com/id/1031159 https://exchange.xforce.ibmcloud.com/vulnerabilities/98404 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-3374
https://notcve.org/view.php?id=CVE-2014-3374
Multiple cross-site scripting (XSS) vulnerabilities in the CCM admin interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90582. Múltiples vulnerabilidades de XSS en la interfaz de administración de CCM en el servidor en Cisco Unified Communications Manager permiten a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de parámetros no especificados, también conocido como Bug ID CSCuq90582. • http://secunia.com/advisories/59696 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3374 http://tools.cisco.com/security/center/viewAlert.x?alertId=36295 http://www.securityfocus.com/bid/70849 http://www.securitytracker.com/id/1031162 https://exchange.xforce.ibmcloud.com/vulnerabilities/98407 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-3375
https://notcve.org/view.php?id=CVE-2014-3375
Multiple cross-site scripting (XSS) vulnerabilities in the CCM Service interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90597. Múltiples vulnerabilidades de XSS en la interfaz de servicio CCM Service en el servidor en Cisco Unified Communications Manager permiten a atacantes remotros inyectar secuencias de comandos web o HTML arbitrarios a través de parámetros no especificados, también conocido como Bug ID CSCuq90597. • http://secunia.com/advisories/61025 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3375 http://tools.cisco.com/security/center/viewAlert.x?alertId=36297 http://www.securityfocus.com/bid/70850 http://www.securitytracker.com/id/1031163 https://exchange.xforce.ibmcloud.com/vulnerabilities/98408 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •