CVE-2016-1439

Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified Contact Center Enterprise through 10.5(2) allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCux59650.

Published: Jun 23, 2016
Updated: Nov 9, 2025
CVE: CVE-2016-1439
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
cisco / unified_contact_center_enterprise	7.2(7)	7.2(7).x
cisco / unified_contact_center_enterprise	7.1(2)	7.1(2).x
cisco / unified_contact_center_enterprise	7.5(3)	7.5(3).x
cisco / unified_contact_center_enterprise	4.6(2)-sr4	4.6(2)-sr4.x
cisco / unified_contact_center_enterprise	10.0(1)	10.0(1).x
cisco / unified_contact_center_enterprise	4.6(2)-sr5	4.6(2)-sr5.x
cisco / unified_contact_center_enterprise	7.0(0)-sr4	7.0(0)-sr4.x
cisco / unified_contact_center_enterprise	8.5(2)	8.5(2).x
cisco / unified_contact_center_enterprise	5.0(0)-sr9	5.0(0)-sr9.x
cisco / unified_contact_center_enterprise	5.0(0)-sr5	5.0(0)-sr5.x
cisco / unified_contact_center_enterprise	4.6(2)-sr6	4.6(2)-sr6.x
cisco / unified_contact_center_enterprise	7.2(3)	7.2(3).x
cisco / unified_contact_center_enterprise	7.5(7)	7.5(7).x
cisco / unified_contact_center_enterprise	7.1(4)	7.1(4).x
cisco / unified_contact_center_enterprise	9.0(4)	9.0(4).x
cisco / unified_contact_center_enterprise	8.5(3)	8.5(3).x
cisco / unified_contact_center_enterprise	10.5(2)	10.5(2).x
cisco / unified_contact_center_enterprise	4.6(2)-sr3	4.6(2)-sr3.x
cisco / unified_contact_center_enterprise	7.2(5)	7.2(5).x
cisco / unified_contact_center_enterprise	7.5(10)	7.5(10).x
cisco / unified_contact_center_enterprise	5.0(0)-sr13	5.0(0)-sr13.x
cisco / unified_contact_center_enterprise	5.0(0)-sr12	5.0(0)-sr12.x
cisco / unified_contact_center_enterprise	8.5(4)	8.5(4).x
cisco / unified_contact_center_enterprise	7.5(4)	7.5(4).x
cisco / unified_contact_center_enterprise	5.0(0)-sr11	5.0(0)-sr11.x
cisco / unified_contact_center_enterprise	6.0(0)-sr9	6.0(0)-sr9.x
cisco / unified_contact_center_enterprise	7.5(9)	7.5(9).x
cisco / unified_contact_center_enterprise	5.0(0)-sr2	5.0(0)-sr2.x
cisco / unified_contact_center_enterprise	6.0(0)-sr12	6.0(0)-sr12.x
cisco / unified_contact_center_enterprise	7.5(6)	7.5(6).x
cisco / unified_contact_center_enterprise	7.1(5)	7.1(5).x
cisco / unified_contact_center_enterprise	10.5(1)	10.5(1).x
cisco / unified_contact_center_enterprise	6.0(0)-sr5	6.0(0)-sr5.x
cisco / unified_contact_center_enterprise	6.0(0)-sr7	6.0(0)-sr7.x
cisco / unified_contact_center_enterprise	8.0(2)	8.0(2).x
cisco / unified_contact_center_enterprise	5.0(0)-sr7	5.0(0)-sr7.x
cisco / unified_contact_center_enterprise	6.0(0)-sr3	6.0(0)-sr3.x
cisco / unified_contact_center_enterprise	5.0(0)-sr4	5.0(0)-sr4.x
cisco / unified_contact_center_enterprise	5.0(0)-sr8	5.0(0)-sr8.x
cisco / unified_contact_center_enterprise	6.0(0)-sr8	6.0(0)-sr8.x
cisco / unified_contact_center_enterprise	8.5(1)	8.5(1).x
cisco / unified_contact_center_enterprise	8.0(3)	8.0(3).x
cisco / unified_contact_center_enterprise	7.1.0	7.1.0.x
cisco / unified_contact_center_enterprise	6.0(0)-sr2	6.0(0)-sr2.x
cisco / unified_contact_center_enterprise	5.0(0)-sr3	5.0(0)-sr3.x
cisco / unified_contact_center_enterprise	9.0(2)	9.0(2).x
cisco / unified_contact_center_enterprise	6.0(0)-sr4	6.0(0)-sr4.x
cisco / unified_contact_center_enterprise	7.0(0)-sr1	7.0(0)-sr1.x
cisco / unified_contact_center_enterprise	5.0(0)	5.0(0).x
cisco / unified_contact_center_enterprise	7.2(1)	7.2(1).x
cisco / unified_contact_center_enterprise	4.6(2)-sr1	4.6(2)-sr1.x
cisco / unified_contact_center_enterprise	9.0(3)	9.0(3).x
cisco / unified_contact_center_enterprise	6.0(0)-sr11	6.0(0)-sr11.x
cisco / unified_contact_center_enterprise	7.1(3)	7.1(3).x
cisco / unified_contact_center_enterprise	7.5(5)	7.5(5).x
cisco / unified_contact_center_enterprise	6.0(0)-sr6	6.0(0)-sr6.x
cisco / unified_contact_center_enterprise	6.0(0)-sr10	6.0(0)-sr10.x
cisco / unified_contact_center_enterprise	4.6.2	4.6.2.x
cisco / unified_contact_center_enterprise	7.0(0)-sr3	7.0(0)-sr3.x
cisco / unified_contact_center_enterprise	7.5(2)	7.5(2).x
cisco / unified_contact_center_enterprise	7.2(4)	7.2(4).x
cisco / unified_contact_center_enterprise	7.2(6)	7.2(6).x
cisco / unified_contact_center_enterprise	10.0(2)	10.0(2).x
cisco / unified_contact_center_enterprise	7.0(0)-sr2	7.0(0)-sr2.x
cisco / unified_contact_center_enterprise	6.0(0)-sr1	6.0(0)-sr1.x
cisco / unified_contact_center_enterprise	7.2(2)	7.2(2).x
cisco / unified_contact_center_enterprise	5.0(0)-sr10	5.0(0)-sr10.x
cisco / unified_contact_center_enterprise	4.6(2)-sr2	4.6(2)-sr2.x
cisco / unified_contact_center_enterprise	7.5(8)	7.5(8).x

Vulnerability Database

309,364

CVE-2016-1439

Deep Security Visibility Without the Complexity