This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:cisco:unified_communications_manager:5.1:(1)
Detail
VendorCiscoFirst view 2008-05-16
ProductUnified Communications ManagerLast view2014-11-13
Version5.1TypeApplication
Edition 
Language 
Update(1) 
 
CPE Productcpe:/a:cisco:unified_communications_manager

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32014-11-13CVE-2014-7991NetworkMediumNone Requ...
42014-08-11CVE-2014-3332NetworkLowRequires ...
6.82014-02-26CVE-2014-0747LocalLowRequires ...
52014-02-26CVE-2014-0743NetworkLowNone Requ...
6.22014-02-26CVE-2014-0742LocalLowRequires ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
6.22014-02-26CVE-2014-0741LocalLowRequires ...
6.82014-02-26CVE-2014-0740NetworkMediumNone Requ...
52014-02-22CVE-2014-0731NetworkLowNone Requ...
6.82014-02-20CVE-2014-0736NetworkMediumNone Requ...
4.32014-02-20CVE-2014-0735NetworkMediumNone Requ...
7.52014-02-20CVE-2014-0734NetworkLowNone Requ...
52014-02-20CVE-2014-0733NetworkLowNone Requ...
52014-02-20CVE-2014-0732NetworkLowNone Requ...
7.52014-02-13CVE-2014-0728NetworkLowNone Requ...
7.52014-02-13CVE-2014-0726NetworkLowNone Requ...
42014-02-13CVE-2014-0724NetworkLowRequires ...
62014-02-04CVE-2014-0686LocalHighRequires ...
42014-01-08CVE-2014-0657NetworkLowRequires ...
42013-12-21CVE-2013-6978NetworkLowRequires ...
6.92013-11-17CVE-2013-6689LocalMediumNone Requ...
6.32013-11-17CVE-2013-6688NetworkMediumRequires ...
7.82013-08-22CVE-2013-3453NetworkLowNone Requ...
7.82010-08-26CVE-2010-2838NetworkLowNone Requ...
7.82010-08-26CVE-2010-2837NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
34% (10)CWE-20Improper Input Validation
10% (3)CWE-399Resource Management Errors
10% (3)CWE-287Improper Authentication
10% (3)CWE-264Permissions, Privileges, and Access Controls
10% (3)CWE-89Improper Sanitization of Special Elements used in an SQL Command ('...
Hide | Show 5 More...
%idName
6% (2)CWE-352Cross-Site Request Forgery (CSRF)
6% (2)CWE-310Cryptographic Issues
3% (1)CWE-200Information Exposure
3% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
3% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-2Inducing Account Lockout
CAPEC-82Violating Implicit Assumptions Regarding XML Content (aka XML Denial of Servi...
CAPEC-99XML Parser Attack
CAPEC-119Resource Depletion
CAPEC-121Locate and Exploit Test APIs
Hide | Show 7 More...
idName
CAPEC-125Resource Depletion through Flooding
CAPEC-130Resource Depletion through Allocation
CAPEC-147XML Ping of Death
CAPEC-197XEE (XML Entity Expansion)
CAPEC-227Denial of Service through Resource Depletion
CAPEC-228Resource Depletion through DTD Injection in a SOAP Message
CAPEC-229XML Attribute Blowup

Open Source Vulnerability Database (OSVDB)

idDescription
67565Cisco Unified Communications Manager SIPStationInit Malformed SIP Message Rem...
67564Cisco Unified Communications Manager SendCombinedStatusInfo Malformed SIP REG...
57456Cisco Unified Communications Manager SIP Packet Processing Unspecified Remote...
57455Cisco Unified Communications Manager SCCP Packet Handling Unspecified Remote DoS
57454Cisco Unified Communications Manager Embedded Firewall Network Connection Sat...
Hide | Show 10 More...
idDescription
57453Cisco Unified Communications Manager SIP Trunk Malformed Packet Handling Remo...
57452Cisco Unified Communications Manager Unspecified SIP Packet Handling Remote DoS
52317Cisco Unified Communications Manager Certificate Authority Proxy Function (CA...
46814Cisco Unified Communications Manager (CUCM) Computer Telephony Integration (C...
45209Cisco Unified Communications Manager Certificate Trust List (CTL) Provider Se...
45208Cisco Unified Communications Manager Certificate Trust List (CTL) Provider Se...
45206Cisco Unified Communications Manager SIP JOIN Message Handling Remote DoS
45205Cisco Unified Communications Manager SNMP Trap Agent Service Malformed UDP Pa...
45204Cisco Unified Communications Manager SIP INVITE Handling Remote DoS (CSCsk46944)
45203Cisco Unified Communications Manager SIP INVITE Handling Remote DoS (CSCsl22355)

Information Assurance Vulnerability Management (IAVM)

idDescription
2013-B-0094Cisco Unified Communications Manager IM and Presence Service Remote Denial of...
Severity : Category I - VMSKEY : V0040164

Nessus® Vulnerability Scanner

idDescription
2014-12-29Name : The remote device is affected by a security bypass vulnerability.
File : cisco_cucm_CSCuq86376.nasl - Type : ACT_GATHER_INFO
2013-09-03Name : The remote host is missing a vendor-supplied security patch.
File : cisco-sa-20130821-cups.nasl - Type : ACT_GATHER_INFO
2010-09-22Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20100922-siphttp.nasl - Type : ACT_GATHER_INFO