Cisco Unified Operations Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Unified Operations Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2009-1161 — CVSS 10.0 (critical): Directory traversal vulnerability in the TFTP service in Cisco CiscoWorks Common Services (CWCS) 3.0.x through 3.2.x on Windows, as used in…
CVE-2010-3036 — CVSS 10.0 (critical): Multiple buffer overflows in the authentication functionality in the web-server module in Cisco CiscoWorks Common Services before 4.0 allow…
CVE-2011-2738 — CVSS 10.0 (critical): Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used in Unified Operations Manager before 8.6 and…
CVE-2011-0960 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Cisco Unified Operations Manager (CUOM) before 8.6 allow remote attackers to execute arbitrary…
CVE-2013-3437 — CVSS 6.5 (medium): SQL injection vulnerability in the management application in Cisco Unified Operations Manager allows remote authenticated users to execute…
CVE-2013-5488 — CVSS 5.0 (medium): Cisco Common Services, as used in Cisco Prime LAN Management Solution (LMS), Cisco Security Manager, Cisco Unified Service Monitor, and…
CVE-2013-3416 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the web framework in the unified-communications management implementation in Cisco Unified…
CVE-2011-0962 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in CSCOnm/servlet/com.cisco.nm.help.ServerHelpEngine in the Common Services Device Center in Cisco…
CVE-2013-3439 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Cisco Unified Operations Manager allows remote attackers to inject arbitrary web script or HTML…
CVE-2013-3440 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cisco Unified Operations Manager allow remote…
CVE-2011-0959 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Operations Manager (CUOM) before 8.6 allow remote attackers to inject…