Cisco on Wednesday introduced patches for practically a dozen vulnerabilities, together with two crucial flaws resulting in distant code execution.
The crucial bugs, tracked as CVE-2025-20354 (CVSS rating of 9.8) and CVE-2025-20358 (CVSS rating of 9.4), affect the Cisco Unified Contact Heart Specific (Unified CCX) equipment.
The primary problem was found within the Java Distant Methodology Invocation (RMI) course of and might be exploited remotely, with out authentication, to add arbitrary information and execute arbitrary instructions with root privileges.
Improper authentication mechanisms related to particular Unified CCX capabilities allow attackers to abuse the Java RMI course of to add a crafted file, permitting them to execute instructions on the underlying working system.
The second defect was found in Unified CCX’s Editor software and might be exploited remotely to bypass authentication and elevate privileges to these of an administrator.
As a result of the communication between the CCX Editor and the Unified CCX server makes use of improper authentication mechanisms, an attacker might redirect the circulation to a malicious server and impersonate Unified CCX, tricking the CCX Editor that the authentication was profitable.
“A profitable exploit might permit the attacker to create and execute arbitrary scripts on the underlying working system of an affected Unified CCX server, as an inside non-root consumer account,” Cisco explains in its advisory.
The issues have been resolved with the discharge of Unified CCX variations 12.5 SU3 ES07 and 15.0 ES01.Commercial. Scroll to proceed studying.
On Wednesday, Cisco additionally launched patches for CVE-2025-20343, a high-severity denial-of-service (DoS) vulnerability in Identification Providers Engine (ISE) that may be exploited remotely, with out authentication.
A logic error within the processing of a RADIUS entry request for a MAC handle that had been beforehand rejected will be exploited by sending a number of crafted requests that may trigger ISE to restart unexpectedly.
Cisco additionally patched eight medium-severity flaws this week. 4 in ISE and ISE Passive Identification Connector (ISE-PIC) that might result in info disclosure or XSS assaults, and 4 in Unified CCX, Unified CCE, Packaged CCE, and CUIC that might result in info disclosure, file exfiltration, command execution, and elevation of privilege to root.
The corporate says it’s not conscious of any of those vulnerabilities being exploited within the wild. Extra info will be discovered on Cisco’s safety advisories web page.
On Wednesday, Cisco additionally up to date the advisories for 2 exploited vulnerabilities in Safe ASA and FTD software program, CVE-2025-20333 and CVE-2025-20362, to warn of a brand new assault variant concentrating on them.
Associated: Apple Patches 19 WebKit Vulnerabilities
Associated: Android Replace Patches Vital Distant Code Execution Flaw
Associated: Cisco Routers Hacked for Rootkit Deployment
Associated: Cisco, Fortinet, Palo Alto Networks Gadgets Focused in Coordinated Marketing campaign
