Cisco Unified Contact Center Express Vulnerabilities Let Remote Attacker Execute Malicious Code

Cisco Unified Contact Center Express Vulnerabilities Let Remote Attacker Execute Malicious Code

Posted on By CWS

Cisco has disclosed a number of crucial vulnerabilities in Unified Contact Middle Categorical (CCX) that enable unauthenticated distant attackers to execute malicious code and escalate privileges.

The vulnerabilities have an effect on the Java Distant Technique Invocation (RMI) course of and authentication mechanisms, probably compromising complete contact heart deployments.

RCE and Authentication Bypass Vulnerability

The first vulnerability, CVE-2025-20354, has a crucial CVSS rating of 9.8, permitting attackers to add arbitrary recordsdata by way of the Java RMI course of with out authentication.

Profitable exploitation permits attackers to execute instructions with root privileges on affected programs.

The vulnerability stems from improper authentication mechanisms in Cisco Unified CCX, leaving organizations’ contact heart infrastructure uncovered to finish compromise.

Attackers can leverage this flaw to ascertain persistent entry, steal delicate buyer information, or deploy ransomware throughout complete contact heart networks.

CVE-2025-20358 presents an equally harmful authentication bypass affecting the CCX Editor software.

Rated 9.4 on the CVSS scale, this vulnerability permits attackers to redirect the authentication move to malicious servers, tricking the CCX Editor into believing respectable authentication occurred.

As soon as bypassed, attackers achieve administrative permissions to create and execute arbitrary scripts as inside non-root customers.

This dual-vulnerability mixture creates a classy assault chain that permits distant attackers to escalate privileges and preserve management over contact heart operations progressively.

CVE IDVulnerability TypeCVSS ScoreCVE-2025-20354Remote Code Execution9.8CVE-2025-20358Authentication Bypass9.4

Cisco has launched software program updates addressing each vulnerabilities, with no workarounds out there.

Organizations operating Unified CCX model 12.5 SU3 and earlier should improve instantly to model 12.5 SU3 ES07, whereas customers on model 15.0 should set up model 15.0 ES01.

The vulnerabilities have an effect on all Unified CCX configurations no matter deployment settings. Different Cisco merchandise, together with Unified Contact Middle Enterprise (CCE) and Packaged Contact Middle Enterprise, stay unaffected.

Comply with us on Google Information, LinkedIn, and X for every day cybersecurity updates. Contact us to function your tales.

Cyber Security News Tags:, , , , , , , , , ,

Related Posts

SoundCloud Confirms Data Breach Following VPN and Access Issues SoundCloud Confirms Data Breach Following VPN and Access Issues Cyber Security News
“GPUGate” Malware Abuses Uses Google Ads and GitHub to Deliver Advanced Malware Payload “GPUGate” Malware Abuses Uses Google Ads and GitHub to Deliver Advanced Malware Payload Cyber Security News
State Hackers Exploit RDP Servers to Deploy Stealthy Malware State Hackers Exploit RDP Servers to Deploy Stealthy Malware Cyber Security News
Sleeping Bouncer Vulnerability Impacts Motherboards from Gigabyte, MSI, ASRock and ASUS Sleeping Bouncer Vulnerability Impacts Motherboards from Gigabyte, MSI, ASRock and ASUS Cyber Security News
Boggy Serpens Intensifies Cyberattacks on Global Targets Boggy Serpens Intensifies Cyberattacks on Global Targets Cyber Security News
New npm Attack Targets Developers with Hidden Malware New npm Attack Targets Developers with Hidden Malware Cyber Security News