Browse all 3 CVE security advisories affecting Unisoon. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Unisoon provides unified communication and collaboration solutions, primarily serving enterprise clients with integrated messaging, video conferencing, and file sharing capabilities. Historically, the organization has faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and access control weaknesses. While no major public security incidents have been widely documented, the three CVEs on record highlight persistent risks in authentication mechanisms and API security. The platform's complex architecture and third-party integrations continue to present potential attack surfaces, necessitating robust patch management and security hardening measures for organizations relying on Unisoon's services.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-3936 | Unisoon UltraLog Express - SQL Injection — UltraLog ExpressCWE-89 | 10.0 | Critical | 2020-03-27 |
| CVE-2020-3920 | Unisoon UltraLog Express - Broken Authentication — UltraLog Express | 8.1 | High | 2020-03-27 |
| CVE-2020-3921 | Unisoon UltraLog Express - Sensitive Data Exposure — UltraLog Express | 8.6 | High | 2020-03-27 |
This page lists every published CVE security advisory associated with Unisoon. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.