Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Cisco Unified Contact Center Express — Vulnerabilities & Security Advisories 30

All 30 CVE vulnerabilities found in Cisco Unified Contact Center Express, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive aggregation of security vulnerabilities affecting Cisco Unified Contact Center Express, categorized by common weakness types and associated tags. It collects detailed records of security flaws ranging from buffer overflows and injection flaws to information disclosure and authentication bypass issues, covering the time range from early 2010 through the present day. Here, security professionals and system administrators can efficiently track vendor advisories issued by Cisco to understand the context of each fix, gain deeper insight into specific weakness classes as they apply to this contact center platform, and review the historical vulnerability profile of the product to assess long-term risk exposure. The data is organized to facilitate rapid identification of relevant issues based on severity, component, and publication date, allowing teams to prioritize remediation efforts effectively. By consolidating information from official Cisco security advisories and third-party databases, this resource offers a centralized view of the security landscape for Cisco Unified Contact Center Express. Users can search for specific vulnerability characteristics or browse by date to stay informed about emerging threats and patches. This structured approach supports proactive security management by providing clear visibility into known weaknesses, enabling organizations to make informed decisions regarding system hardening, patch application, and ongoing monitoring of their contact center infrastructure without relying on fragmented sources.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2026-20117 Multiple Cisco Contact Center Products Cross-Site Scripting Vulnerabilities CWE-79 6.1 Medium2026-03-11
CVE-2026-20116 Multiple Cisco Contact Center Products Cross-Site Scripting Vulnerabilities CWE-79 6.1 Medium2026-03-11
CVE-2025-20375 Cisco Unified Contact Center Express Arbitrary File Upload Vulnerability CWE-434 6.5 Medium2025-11-05
CVE-2025-20376 Cisco Unified Contact Center Express Remote Code Execution Vulnerability CWE-434 6.5 Medium2025-11-05
CVE-2025-20374 Cisco Unified Contact Center Express Arbitrary File Download Vulnerability CWE-22 4.9 Medium2025-11-05
CVE-2025-20358 Cisco Unified Contact Center Express Editor Authentication Bypass Vulnerability CWE-306 9.4 Critical2025-11-05
CVE-2025-20354 Cisco Unified Contact Center Express Remote Code Execution Vulnerability CWE-434 9.8 Critical2025-11-05
CVE-2025-20288 Cisco Unified Intelligence Center Server-Side Request Forgery Vulnerability CWE-918 5.8 Medium2025-07-16
CVE-2025-20274 Cisco Unified Intelligence Center Arbitrary File Upload Vulnerability CWE-434 6.3 Medium2025-07-16
CVE-2025-20279 Cisco Unifed Contact Center Express Stored Cross-Site Scripting Vulnerability CWE-79 4.8 Medium2025-06-04
CVE-2025-20277 Cisco Unified Contact Center Express Path Traversal Vulnerability CWE-22 3.4 Low2025-06-04
CVE-2025-20276 Cisco Unified Contact Center Express Remote Code Execution Vulnerability CWE-502 3.8 Low2025-06-04
CVE-2025-20275 Cisco Unified Contact Center Express Editor Remote Code Execution Vulnerability CWE-502 5.3 Medium2025-06-04
CVE-2025-20113 Cisco Unified Intelligence Center Privilege Escalation Vulnerability CWE-602 7.1 High2025-05-21
CVE-2025-20114 Cisco Unified Intelligence Center Insecure Direct Object Reference Vulnerability CWE-639 4.3 Medium2025-05-21
CVE-2023-20232 Cisco Unified Contact Center Express 输入验证错误漏洞 CWE-20 5.3 Medium2023-08-16
CVE-2023-20096 Cisco Unified Contact Center Express Stored Cross-Site Scripting Vulnerability CWE-79 5.4 Medium2023-04-05
CVE-2021-1395 Cisco Unified Intelligence Center Reflected Cross-Site Scripting Vulnerability CWE-79 4.7 Medium2021-06-16
CVE-2021-1358 Cisco Finesse Open Redirect Vulnerability CWE-601 4.7 Medium2021-05-22
CVE-2021-1254 Cisco Finesse Cross-Site Scripting Vulnerabilities CWE-79 4.8 Medium2021-05-22
CVE-2021-1463 Cisco Unified Intelligence Center Reflected Cross-Site Scripting Vulnerability CWE-79 6.1 Medium2021-04-08
CVE-2019-1888 Cisco Unified Contact Center Express Privilege Escalation Vulnerability CWE-434 7.2 -2020-09-23
CVE-2020-3267 Cisco Unified Contact Center Express Improper API Authorization Vulnerability CWE-285 7.1 -2020-06-03
CVE-2020-3280 Cisco Unified Contact Center Express Remote Code Execution Vulnerability CWE-20 9.8 -2020-05-22
CVE-2019-15259 Cisco Unified Contact Center Express HTTP Response Splitting Vulnerability CWE-113 4.7 -2019-10-02
CVE-2019-12633 Cisco Unified Contact Center Express Request Processing Server-Side Request Forgery Vulnerability CWE-20 9.8 -2019-09-05
CVE-2019-12626 Cisco Unified Contact Center Express Stored Cross-Site Scripting Vulnerability CWE-20 5.4 -2019-08-21
CVE-2019-1670 Cisco Unified Intelligence Center Software Cross-Site Scripting Vulnerability CWE-79 6.1 -2019-02-07
CVE-2017-12288 Cisco Unified Contact Center Express 跨站脚本漏洞 CWE-79 6.1 -2017-10-19
CVE-2017-6722 Cisco Unified Contact Center Express Extensible Messaging and Presence Protocol 授权问题漏洞 8.2 -2017-07-04

All 30 known CVE vulnerabilities affecting Cisco Unified Contact Center Express with full Chinese analysis, references, and POCs where available.