Cisco

Unified Ccx

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2025-20375

Medienbericht
  • EPSS 0.05%
  • Veröffentlicht 05.11.2025 16:31:43
  • Zuletzt bearbeitet 17.11.2025 19:40:23

A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to upload and execute arbitrary files. This vulnerability is due to an insufficient input validation associated to specific UI features. An attacker c...

7.2

CVE-2025-20376

Medienbericht
  • EPSS 0.06%
  • Veröffentlicht 05.11.2025 16:31:38
  • Zuletzt bearbeitet 17.11.2025 19:39:35

A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to upload and execute arbitrary files. This vulnerability is due to an insufficient input validation associated to file upload mechanisms. An attacker...

9.8

CVE-2025-20358

Medienbericht
  • EPSS 0.4%
  • Veröffentlicht 05.11.2025 16:31:23
  • Zuletzt bearbeitet 07.11.2025 15:43:44

A vulnerability in the Contact Center Express (CCX) Editor application of Cisco Unified CCX could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative permissions pertaining to script creation and execution. ...

4.9

CVE-2025-20374

Medienbericht
  • EPSS 0.26%
  • Veröffentlicht 05.11.2025 16:31:23
  • Zuletzt bearbeitet 17.11.2025 19:40:48

A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to perform a directory traversal and access arbitrary resources. This vulnerability is due to an insufficient input validation associated to specific ...

9.8

CVE-2025-20354

Medienbericht
  • EPSS 0.14%
  • Veröffentlicht 05.11.2025 16:31:14
  • Zuletzt bearbeitet 07.11.2025 15:44:35

A vulnerability in the Java Remote Method Invocation (RMI) process of Cisco Unified CCX could allow an unauthenticated, remote attacker to upload arbitrary files and execute arbitrary commands with root permissions on an affected system. This vuln...

4.8

CVE-2025-20279

  • EPSS 0.03%
  • Veröffentlicht 04.06.2025 16:18:20
  • Zuletzt bearbeitet 22.07.2025 13:41:39

A vulnerability in the web-based management interface of Cisco Unified CCX could allow an authenticated, remote attacker to conduct a stored XSS attack on an affected system. To exploit this vulnerability, the attacker must have valid administrative ...

6.7

CVE-2025-20277

  • EPSS 0.02%
  • Veröffentlicht 04.06.2025 16:18:12
  • Zuletzt bearbeitet 22.07.2025 13:41:20

A vulnerability in the web-based management interface of Cisco Unified CCX could allow an authenticated, local attacker to execute arbitrary code on an affected device. To exploit this vulnerability, the attacker must have valid administrative creden...

7.2

CVE-2025-20276

  • EPSS 0.38%
  • Veröffentlicht 04.06.2025 16:18:04
  • Zuletzt bearbeitet 22.07.2025 13:40:15

A vulnerability in the web-based management interface of Cisco Unified CCX could allow an authenticated, remote attacker to execute arbitrary code on an affected device. To exploit this vulnerability, the attacker must have valid administrative crede...

7.8

CVE-2025-20275

  • EPSS 0.47%
  • Veröffentlicht 04.06.2025 16:18:03
  • Zuletzt bearbeitet 22.07.2025 13:36:08

A vulnerability in the file opening process of Cisco Unified Contact Center Express (Unified CCX) Editor could allow an unauthenticated attacker to execute arbitrary code on an affected device.  This vulnerability is due to insecure deseriali...

9

CVE-2009-2047

  • EPSS 0.56%
  • Veröffentlicht 16.07.2009 15:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Directory traversal vulnerability in the Administration interface in Cisco Customer Response Solutions (CRS) before 7.0(1) SR2 in Cisco Unified Contact Center Express (aka CCX) server allows remote authenticated users to read, modify, or delete arbit...