Cisco unified contact center enterprise
This hub aggregates every CVE we track for Cisco unified contact center enterprise, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
18
CVEs tracked
5
Critical
2
High
2
In CISA KEV
Severity distribution
MEDIUM11CRITICAL5HIGH2
Monthly trend
0
0
0
0
0
0
0
0
0
0
3
0
1
0
0
0
2
0
2
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Cisco unified contact center enterprise.
- CVE-2026-20109Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerability4.8
- CVE-2026-20055Cisco Packaged Contact Center Enterprise & Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerability4.8
- CVE-2025-20377Cisco Unified Intelligence Center API Information Disclosure Vulnerability4.3
- CVE-2025-20354Cisco Unified Contact Center Express Remote Code Execution Vulnerability9.8
- CVE-2025-20288Cisco Unified Intelligence Center Server-Side Request Forgery Vulnerability5.8
- CVE-2025-20242A vulnerability in the Cloud Connect component of Cisco Unified Contact Center Enterprise (CCE) could allow an unauthenticated, remote attacker to read and modify data on an affected device. Thi...6.5
- CVE-2025-20113Cisco Unified Intelligence Center Privilege Escalation Vulnerability7.1
- CVE-2025-20114Cisco Unified Intelligence Center Insecure Direct Object Reference Vulnerability4.3
- CVE-2024-20405A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a stored XSS attack by exploiting an RFI vulnerability. This vu...4.8
- CVE-2024-20404A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct an SSRF attack on an affected system. This vulnerability is due ...7.2
- CVE-2024-20253A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. This ...9.9
- CVE-2023-20088Cisco Finesse Reverse Proxy VPN-less Access to Finesse Desktop Denial of Service Vulnerability5.3
- CVE-2023-20058A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack a...6.1
- CVE-2021-44228Apache Log4j2 JNDI features do not protect against attacker controlled LDAP and other JNDI related endpointsKEV10.0
- CVE-2020-3163Cisco Unified Contact Center Enterprise Denial of Service Vulnerability5.9
Product normalization is registry-driven with AI assist and human review. How it works