Cisco packaged contact center enterprise
This hub aggregates every CVE we track for Cisco packaged contact center enterprise, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
11
CVEs tracked
3
Critical
2
High
2
In CISA KEV
Severity distribution
MEDIUM6CRITICAL3HIGH2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
2
0
0
0
0
0
2024-072026-06
Latest CVEs
The 11 most recently published vulnerabilities affecting Cisco packaged contact center enterprise.
- CVE-2026-20109Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerability4.8
- CVE-2026-20055Cisco Packaged Contact Center Enterprise & Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerability4.8
- CVE-2025-20377Cisco Unified Intelligence Center API Information Disclosure Vulnerability4.3
- CVE-2024-20405A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a stored XSS attack by exploiting an RFI vulnerability. This vu...4.8
- CVE-2024-20404A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct an SSRF attack on an affected system. This vulnerability is due ...7.2
- CVE-2024-20253A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. This ...9.9
- CVE-2023-20058A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack a...6.1
- CVE-2021-44228Apache Log4j2 JNDI features do not protect against attacker controlled LDAP and other JNDI related endpointsKEV10.0
- CVE-2018-0445Cisco Packaged Contact Center Enterprise Cross-Site Request Forgery Vulnerability8.8
- CVE-2018-0444Cisco Packaged Contact Center Enterprise Cross-Site Scripting Vulnerability6.1
- CVE-2013-2251Apache Struts 2.0.0 through 2.3.15 allows remote attackers to execute arbitrary OGNL expressions via a parameter with a crafted (1) action:, (2) redirect:, or (3) redirectAction: prefix.KEV9.8
Product normalization is registry-driven with AI assist and human review. How it works