Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1020 CNY

100%
Buy Us a Coffee

Cisco Unity Connection — Vulnerabilities & Security Advisories 28

All 28 CVE vulnerabilities found in Cisco Unity Connection, with AI-generated Chinese analysis, references, and POCs.

This page provides a comprehensive overview of vulnerability aggregation for Cisco Unity Connection, focusing on software weaknesses within the vendor’s portfolio. It serves as a centralized resource for security professionals and system administrators seeking to understand the risk landscape associated with this specific unified messaging solution. The content collects data on various types of vulnerabilities, including cross-site scripting, command injection, and authentication bypass flaws, covering advisories released from the initial product launch through recent critical updates. By aggregating these entries, the page ensures that historical context and current threat intelligence are readily accessible for thorough security assessments. Readers can use this interface to track specific vendor advisories over time, gaining insight into how Cisco addresses security issues in Unity Connection. Furthermore, users can deepen their understanding of broader weakness classes by seeing how they manifest in this environment, such as how improper input validation leads to data exposure. The resource also allows for a detailed look up of a product’s vulnerability history, enabling teams to review patch notes and affected versions to prioritize remediation efforts. This structured approach helps organizations manage their attack surface more effectively by identifying patterns in vulnerability disclosure and understanding the maturity of security controls in place. Ultimately, the goal is to provide clear, actionable intelligence that supports proactive risk management and compliance strategies without requiring users to navigate multiple disparate sources or interpret fragmented technical data.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2026-20034 Cisco Unity Connection Remote Code Execution Vulnerability CWE-35 8.8 High2026-05-06
CVE-2026-20035 Cisco Unity Connection Server-Side Request Forgery Vulnerability CWE-918 7.2 High2026-05-06
CVE-2026-20059 Cisco Unity Connection Reflected Cross-Site Scripting Vulnerability CWE-79 6.1 Medium2026-04-15
CVE-2026-20061 Cisco Unity Connection SQL Injection Vulnerability CWE-89 4.3 Medium2026-04-15
CVE-2026-20060 Cisco Unity Connection Open Redirect Vulnerability CWE-601 4.7 Medium2026-04-15
CVE-2026-20081 Cisco Unity Connection Arbitrary File Download Vulnerability CWE-23 6.5 Medium2026-04-15
CVE-2026-20078 Cisco Unity Connection Arbitrary File Download Vulnerability CWE-23 6.5 Medium2026-04-15
CVE-2020-3532 Cisco Unified Communications Products Cross-Site Scripting Vulnerability CWE-79 6.1 -2024-11-18
CVE-2024-20305 Cisco Unity Connection 安全漏洞 CWE-79 4.8 Medium2024-01-26
CVE-2024-20272 Cisco Unity Connection 安全漏洞 CWE-434 7.3 High2024-01-17
CVE-2022-20800 Cisco Unified Communications Products Cross-Site Scripting Vulnerability CWE-79 6.1 Medium2022-07-06
CVE-2021-34701 Cisco Unified Communications Products Path Traversal Vulnerability CWE-22 4.3 Medium2021-11-04
CVE-2021-1409 Cisco Unified Communications Products Cross-Site Scripting Vulnerabilities CWE-89 6.1 Medium2021-04-08
CVE-2021-1408 Cisco Unified Communications Products Cross-Site Scripting Vulnerabilities CWE-89 6.1 Medium2021-04-08
CVE-2021-1407 Cisco Unified Communications Products Cross-Site Scripting Vulnerabilities CWE-89 6.1 Medium2021-04-08
CVE-2021-1380 Cisco Unified Communications Products Cross-Site Scripting Vulnerabilities CWE-89 6.1 Medium2021-04-08
CVE-2021-1362 Cisco Unified Communications Products Remote Code Execution Vulnerability CWE-94 8.8 High2021-04-08
CVE-2019-15963 Cisco Unified Communications Manager Information Disclosure Vulnerability CWE-200 6.5 -2020-09-23
CVE-2020-3130 Cisco Unity Connection Directory Traversal Vulnerability CWE-22 6.5 -2020-09-23
CVE-2020-3282 Cisco Unified Communications Products Cross-Site Scripting Vulnerability CWE-79 6.1 -2020-07-02
CVE-2020-3129 Cisco Unity Connection Stored Cross-Site Scripting Vulnerability CWE-79 4.8 -2020-01-26
CVE-2019-12707 Multiple Cisco Unified Communications Products Cross-Site Scripting Vulnerability CWE-79 6.1 -2019-10-02
CVE-2019-1685 Cisco Unity Connection Reflected Cross-Site Scripting Vulnerability CWE-79 6.1 -2019-02-21
CVE-2018-15426 Cisco Unity Connection Stored Cross-Site Scripting Vulnerability CWE-79 5.4 -2018-10-05
CVE-2018-15396 Cisco Unity Connection File Upload Denial of Service Vulnerability CWE-399 4.9 -2018-10-05
CVE-2018-0203 Cisco Unity Connection SMTP relay 安全漏洞 CWE-19 5.3 -2018-02-22
CVE-2017-12212 Cisco Unity Connection 跨站脚本漏洞 CWE-79 6.1 -2017-09-07
CVE-2017-6629 Cisco Unity Connection 安全漏洞 CWE-22 7.5 -2017-05-03

All 28 known CVE vulnerabilities affecting Cisco Unity Connection with full Chinese analysis, references, and POCs where available.