Cisco Socialminer vulnerabilities
5 known vulnerabilities affecting cisco/cisco_socialminer.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM5
Vulnerabilities
Page 1 of 1
CVE-2025-20278MEDIUMCVSS 6.7v12.5(1)ES01v10.5(1)+15 more2025-06-04
CVE-2025-20278 [MEDIUM] CWE-77 CVE-2025-20278: A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenti
A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device as the root user.
This vulnerability is due to improper validation of user-supplied command arguments. An attacker could exploit this vulnerab
cvelistv5nvd
CVE-2025-20129MEDIUMCVSS 5.4v12.5(1)ES01v10.5(1)+15 more2025-06-04
CVE-2025-20129 [MEDIUM] CWE-200 CVE-2025-20129: A vulnerability in the web-based chat interface of Cisco Customer Collaboration Platform (CCP), form
A vulnerability in the web-based chat interface of Cisco Customer Collaboration Platform (CCP), formerly Cisco SocialMiner, could allow an unauthenticated, remote attacker to persuade users to disclose sensitive data.
This vulnerability is due to improper sanitization of HTTP requests that are sent to the web-based chat interface. An attacker could
cvelistv5nvd
CVE-2025-20112MEDIUMCVSS 5.1v12.5(1)ES01v10.5(1)+15 more2025-05-21
CVE-2025-20112 [MEDIUM] CWE-268 CVE-2025-20112: A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could
A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileges to root on an affected device.
This vulnerability is due to excessive permissions that have been assigned to system commands. An attacker could exploit this vulnerability by executing craf
cvelistv5nvd
CVE-2019-1668MEDIUMCVSS 6.1vn/a2019-01-24
CVE-2019-1668 [MEDIUM] CWE-79 CVE-2019-1668: A vulnerability in the chat feed feature of Cisco SocialMiner could allow an unauthenticated, remote
A vulnerability in the chat feed feature of Cisco SocialMiner could allow an unauthenticated, remote attacker to perform cross-site scripting (XSS) attacks against a user of the web-based user interface of an affected system. This vulnerability is due to insufficient sanitization of user-supplied input delivered to the chat feed as part of an HTTP requ
cvelistv5nvd
CVE-2018-15435MEDIUMCVSS 6.1vn/a2018-10-17
CVE-2018-15435 [MEDIUM] CWE-79 CVE-2018-15435: A vulnerability in the web-based management interface of Cisco SocialMiner could allow an unauthenti
A vulnerability in the web-based management interface of Cisco SocialMiner could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an af
cvelistv5nvd