CVE-2018-0398 — CVSS 9.8 (critical): Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct…
CVE-2018-0399 — CVSS 9.8 (critical): Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to retrieve…
CVE-2017-12337 — CVSS 9.8 (critical): A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platform could…
CVE-2016-6442 — CVSS 8.8 (high): A vulnerability in Cisco Finesse Agent and Supervisor Desktop Software could allow an unauthenticated, remote attacker to conduct a…
CVE-2016-1373 — CVSS 8.6 (high): The gadgets-integration API in Cisco Finesse 8.5(1) through 8.5(5), 8.6(1), 9.0(1), 9.0(2), 9.1(1), 9.1(1)SU1, 9.1(1)SU1.1, 9.1(1)ES1…
CVE-2017-6779 — CVSS 7.5 (high): Multiple Cisco products are affected by a vulnerability in local file management for certain system log files of Cisco collaboration…
CVE-2019-12632 — CVSS 7.5 (high): A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side…
CVE-2015-0754 — CVSS 7.5 (high): Cisco Finesse 10.5(1) allows remote authenticated users to obtain sensitive information or cause a denial of service (CPU and memory…
CVE-2024-20404 — CVSS 7.2 (high): A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct an SSRF…
CVE-2021-1245 — CVSS 6.5 (medium): Cisco Finesse and Cisco Unified CVP OpenSocial Gadget Editor Cross-Site Scripting Vulnerability A vulnerability in the web-based management…
CVE-2017-6761 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Finesse 10.6(1) and 11.5(1) could allow an unauthenticated, remote attacker…
CVE-2017-12288 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Unified Contact Center Express could allow an unauthenticated, remote…
CVE-2019-15278 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to bypass…
CVE-2020-3159 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a…
CVE-2025-20278 — CVSS 6.0 (medium): A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execute…
CVE-2023-20088 — CVSS 5.3 (medium): A vulnerability in the nginx configurations that are provided as part of the VPN-less reverse proxy for Cisco Finesse could allow an…
CVE-2013-3455 — CVSS 5.0 (medium): Cisco Finesse allows remote attackers to obtain sensitive information by sniffing the network for HTTP query data, aka Bug ID CSCug16732.
CVE-2013-3457 — CVSS 5.0 (medium): Absolute path traversal vulnerability in the web interface in Cisco Finesse allows remote attackers to read directory contents via a direct…
CVE-2021-1254 — CVSS 4.8 (medium): Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an authenticated, remote attacker to conduct a…
CVE-2024-20405 — CVSS 4.8 (medium): A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a stored…
CVE-2021-1358 — CVSS 4.7 (medium): A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to redirect a user…
CVE-2015-0714 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Cisco Finesse Server 10.0(1), 10.5(1), 10.6(1), and 11.0(1) allow remote attackers…
CVE-2015-4310 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Cisco Finesse 10.5(1) allow remote attackers to inject arbitrary web script or HTML…