Cisco has issued patches for multiple vulnerabilities, including two critical flaws in their Unified Contact Center Express (Unified CCX) appliance that could allow remote code execution and privilege escalation. These security updates address flaws affecting several Cisco products, preventing potential exploitation by threat actors. #CiscoUnifiedCCX #RemoteCodeExecution
Keypoints
- Cisco released patches for nearly a dozen vulnerabilities across various products this week.
- Two critical bugs in Unified CCX could enable remote attackers to execute arbitrary commands and escalate privileges.
- The Java RMI process flaw allows unauthenticated remote code execution with root privileges.
- The Unified CCX Editor flaw could be exploited remotely to impersonate servers and elevate user privileges.
- Other patches include fixes for DoS, information disclosure, and command execution vulnerabilities in Ciscoβs security software.
Read More: https://www.securityweek.com/cisco-patches-critical-vulnerabilities-in-contact-center-appliance/