The Verizon Wireless Network Extender SCS-26UC4 and SCS-2U01 does not use CAVE authentication, which makes it easier for remote attackers to obtain ESN and MIN values from arbitrary phones, and. Rated low severity (CVSS 2.6). No vendor patch available.
Authentication Bypass
Wireless Network Extender
NVD
CVSS 2.0
2.6
EPSS
0.9%
Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(2) and the IM & Presence Service in Cisco Unified Presence Server through 9.1(2) use the same CTI and database-encryption key across. Rated remotely exploitable, low attack complexity. No vendor patch available.
Information Disclosure
Cisco
Unified Communications Manager
NVD
EPSS
0.1%