Cisco Unified Presence Server — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Unified Presence Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (16)
CVE-2011-1643 — CVSS 10.0 (critical): Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x, 7.x before 7.1(5b)su4, 8.0, and 8.5 before 8.5(1)su2 and Cisco…
CVE-2007-1826 — CVSS 7.8 (high): Unspecified vulnerability in the IPSec Manager Service for Cisco Unified CallManager (CUCM) 5.0 before 5.0(4a)SU1 and Cisco Unified…
CVE-2007-1834 — CVSS 7.8 (high): Cisco Unified CallManager (CUCM) 5.0 before 5.0(4a)SU1 and Cisco Unified Presence Server (CUPS) 1.0 before 1.0(3) allow remote attackers to…
CVE-2007-3775 — CVSS 7.8 (high): Unspecified vulnerability in Cisco Unified Communications Manager (CUCM, formerly CallManager) and Unified Presence Server (CUPS) allows…
CVE-2008-1158 — CVSS 7.8 (high): The Presence Engine (PE) service in Cisco Unified Presence before 6.0(1) allows remote attackers to cause a denial of service (core dump…
CVE-2009-2874 — CVSS 7.8 (high): The TimesTenD process in Cisco Unified Presence 1.x, 6.x before 6.0(6), and 7.x before 7.0(4) allows remote attackers to cause a denial of…
CVE-2010-2839 — CVSS 7.8 (high): SIPD in Cisco Unified Presence 6.x before 6.0(7) and 7.x before 7.0(8) allows remote attackers to cause a denial of service (stack memory…
CVE-2010-2840 — CVSS 7.8 (high): The Presence Engine (PE) service in Cisco Unified Presence 6.x before 6.0(7) and 7.x before 7.0(8) does not properly handle an erroneous…
CVE-2006-5553 — CVSS 7.8 (high): Cisco Security Agent (CSA) for Linux 4.5 before 4.5.1.657 and 5.0 before 5.0.0.193, as used by Unified CallManager (CUCM) and Unified…
CVE-2013-1137 — CVSS 7.8 (high): Cisco Unified Presence Server (CUPS) 8.6, 9.0, and 9.1 before 9.1.1 allows remote attackers to cause a denial of service (CPU consumption)…
CVE-2013-6983 — CVSS 6.5 (medium): SQL injection vulnerability in the web interface in Cisco Unified Presence Server allows remote authenticated users to execute arbitrary…
CVE-2014-3339 — CVSS 6.5 (medium): Multiple SQL injection vulnerabilities in the administrative web interface in Cisco Unified Communications Manager (CM) and Cisco Unified…
CVE-2013-1242 — CVSS 5.0 (medium): Memory leak in the web framework in the server in Cisco Unified Presence (CUP) allows remote attackers to cause a denial of service (memory…
CVE-2014-3328 — CVSS 5.0 (medium): The Intercluster Sync Agent Service in Cisco Unified Presence Server allows remote attackers to cause a denial of service via a TCP SYN…
CVE-2007-3776 — CVSS 5.0 (medium): Cisco Unified Communications Manager (CUCM, formerly CallManager) and Unified Presence Server (CUPS) allow remote attackers to obtain…
CVE-2015-4220 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Cisco Unified Presence Server 9.1(1) allows remote attackers to inject arbitrary web script or…