Emergency responder
This hub aggregates every CVE we track for Emergency responder, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.
27
CVEs tracked
5
Critical
3
High
1
In CISA KEV
Severity distribution
MEDIUM19CRITICAL5HIGH3
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Emergency responder.
- CVE-2024-20352A vulnerability in Cisco Emergency Responder could allow an authenticated, remote attacker to conduct a directory traversal attack, which could allow the attacker to perform arbitrary actions on an...4.9
- CVE-2024-20347A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to conduct a CSRF attack, which could allow the attacker to perform arbitrary actions on an affected dev...4.3
- CVE-2023-20259A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow an unauthenticated, remote attacker to cause high CPU utilization, which could impact access to the ...8.6
- CVE-2023-20101A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to log in to an affected device using the root account, which has default, static credentials that canno...9.8
- CVE-2023-20266A vulnerability in Cisco Emergency Responder, Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unity Co...6.5
- CVE-2021-44228Apache Log4j2 JNDI features do not protect against attacker controlled LDAP and other JNDI related endpointsKEV10.0
- CVE-2021-1226Cisco Unified Communications Products Information Disclosure Vulnerability4.3
- CVE-2019-16025Cisco Emergency Responder Stored Cross-Site Scripting Vulnerability4.8
- CVE-2018-15403Multiple Cisco Unified Communications Products Open Redirect Vulnerability5.4
- CVE-2017-6779Multiple Cisco products are affected by a vulnerability in local file management for certain system log files of Cisco collaboration products that could allow an unauthenticated, remote attacker to...7.5
- CVE-2017-12337A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platform could allow an unauthenticated, remote attacker to gain unauthor...9.8
- CVE-2017-12227A vulnerability in the SQL database interface for Cisco Emergency Responder could allow an authenticated, remote attacker to conduct a blind SQL injection attack. The vulnerability is due to a fail...5.4
- CVE-2016-9208A vulnerability in the File Management Utility, the Download File form, and the Serviceability application of Cisco Emergency Responder could allow an authenticated, remote attacker to access files...6.5
- CVE-2016-6468A vulnerability in the web-based management interface of Cisco Emergency Responder could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform ...8.8
- CVE-2015-6405Cross-site request forgery (CSRF) vulnerability in Cisco Emergency Responder 10.5(1) and 10.5(1a) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuv26501.6.8
Product normalization is registry-driven with AI assist and human review. How it works