Cisco Enterprise Chat And Email — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Enterprise Chat And Email, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2025-20139 — CVSS 7.5 (high): A vulnerability in chat messaging features of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to…
CVE-2024-20484 — CVSS 7.5 (high): A vulnerability in the External Agent Assignment Service (EAAS) feature of Cisco Enterprise Chat and Email (ECE) could allow an…
CVE-2019-1877 — CVSS 6.5 (medium): A vulnerability in the HTTP API of Cisco Enterprise Chat and Email could allow an unauthenticated, remote attacker to download files…
CVE-2019-1702 — CVSS 6.1 (medium): Multiple vulnerabilities in the web-based management interface of Cisco Enterprise Chat and Email could allow an unauthenticated, remote…
CVE-2019-1870 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Enterprise Chat and Email (ECE) Center could allow an unauthenticated…
CVE-2022-20631 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to conduct an XSS…
CVE-2022-20632 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to conduct an XSS…
CVE-2025-20310 — CVSS 6.1 (medium): A vulnerability in the web UI of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to conduct a stored…
CVE-2024-20367 — CVSS 5.4 (medium): A vulnerability in the web UI of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct a…
CVE-2022-20802 — CVSS 5.4 (medium): A vulnerability in the web interface of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct a…
CVE-2022-20633 — CVSS 5.3 (medium): A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to perform a…
CVE-2022-20634 — CVSS 4.7 (medium): A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to redirect a user…