CVE-2024-20404 | Cisco Unified Contact Center Enterprise Web-Based Management Interface server-side request forgery (cisco-sa-finesse-ssrf-rfi-Um7wT8Ew)

Inserito da Angelo Barbosa | Giu 5, 2024 | CVE

A vulnerability, which was classified as critical, was found in Cisco Unified Contact Center Enterprise, Unified Contact Center Express, Finesse and Packaged Contact Center Enterprise. This affects an unknown part of the component Web-Based Management Interface. The manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2024-20404. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20404 | Cisco Unified Contact Center Enterprise Web-Based Management Interface server-side request forgery (cisco-sa-finesse-ssrf-rfi-Um7wT8Ew)

Post correlati

CVE-2024-1690 | subratamal TeraWallet Plugin up to 1.4.10 on WordPress terawallet_export_user_search authorization

CVE-2024-43235 | Meta Box Plugin up to 5.9.10 on WordPress authorization

CVE-2024-22199 | gofiber template prior 3.1.9 cross site scripting

CVE-2024-30454 | VeronaLabs WP SMS Plugin up to 6.6.2 on WordPress cross-site request forgery