Cisco Unified Contact Center Enterprise — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Unified Contact Center Enterprise, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2023-20062 — CVSS 6.5 (medium): Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote attacker to collect sensitive…
CVE-2025-20242 — CVSS 6.5 (medium): A vulnerability in the Cloud Connect component of Cisco Unified Contact Center Enterprise (CCE) could allow an unauthenticated, remote…
CVE-2023-20061 — CVSS 6.5 (medium): Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote attacker to collect sensitive…
CVE-2023-20058 — CVSS 6.1 (medium): A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker…
CVE-2016-1439 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified Contact Center Enterprise through 10.5(2) allows…
CVE-2020-3163 — CVSS 5.9 (medium): A vulnerability in the Live Data server of Cisco Unified Contact Center Enterprise could allow an unauthenticated, remote attacker to cause…
CVE-2017-6626 — CVSS 5.3 (medium): A vulnerability in the Cisco Finesse Notification Service for Cisco Unified Contact Center Enterprise (UCCE) 11.5(1) and 11.6(1) could…
CVE-2007-0198 — CVSS 5.0 (medium): The JTapi Gateway process in Cisco Unified Contact Center Enterprise, Unified Contact Center Hosted, IP Contact Center Enterprise, and…
CVE-2021-1395 — CVSS 4.7 (medium): A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker…
CVE-2014-3323 — CVSS 4.0 (medium): Directory traversal vulnerability in Cisco Unified Contact Center Enterprise allows remote authenticated users to read arbitrary web-root…
CVE-2014-2180 — CVSS 4.0 (medium): The Document Management component in Cisco Unified Contact Center Express does not properly validate a parameter, which allows remote…