CVE-2024-20253 | Cisco Packaged Contact Center Enterprise Remote Code Execution (cisco-sa-cucm-rce-bWNzQcUm)

A vulnerability, which was classified as very critical, was found in Cisco Packaged Contact Center Enterprise, Unified Communications Manager, Unified Communications Manager IM & Presence Service, Unified Communications Manager Session Management Edition, Unified Contact Center Enterprise, Unified Contact Center Express, Unity Connection and Virtualized Voice Browser. Affected is an unknown function. The manipulation leads to Remote Code Execution.

This vulnerability is traded as CVE-2024-20253. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20253 | Cisco Packaged Contact Center Enterprise Remote Code Execution (cisco-sa-cucm-rce-bWNzQcUm)

Related Posts

CVE-2024-29824 | Ivanti Endpoint Manager RecordGoodApp sql injection

CVE-2024-34075 | xiboon kurwov up to 3.2.4 MarkovData#getNext deserialization

CVE-2023-50429 | IzyBat Orange Casiers prior 20230803_1 getEnsemble.php sql injection (GHSA-mc3w-rv8p-f9xf)

CVE-2024-24830 | OpenObserve up to 0.7.x Role-Based Access Control /api/{org_id}/users improper authorization (GHSA-hfxx-g56f-8h5v)