Cisco Unified Contact Center Express Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack or execute arbitrary code on an affected device. To exploit these vulnerabilities, the attacker must have valid administrative credentials. For more information about these vulnerabilities, see the Details section of this advisory. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uccx-multi-UhOTvPGL Security Impact Rating: Medium CVE: CVE-2025-20276,CVE-2025-20277,CVE-2025-20279
http://news.poseidon-us.com/TL9JVR

Cisco Unified Contact Center Express Vulnerabilities

Like this:

Related

More Posts

Week in review: Backdoor found in SOHO devices running Linux, high-risk WinRAR RCE flaw patched

Trump’s probationary period reforms cemented in OPM final rule

Trump’s probationary period reforms cemented in OPM final rule

Trump sees win from Supreme Court ruling, but federal layoffs likely remain on hold

The government wants efficiency. Operations research already knows how

House appropriators soften CISA cuts, call for DHS ‘contractor cyber readiness pilot’

House appropriators soften CISA cuts, call for DHS ‘contractor cyber readiness pilot’

House appropriators soften CISA cuts, call for DHS ‘contractor cyber readiness pilot’

New legal questions arise over ‘interested party’ status in bid protests

New legal questions arise over ‘interested party’ status in bid protests

Share this:

Like this:

Related

More Posts