Cisco Unified Contact Center Express Vulnerabilities Let Remote Attacker Execute Malicious Code

Cisco Unified Contact Center Express Vulnerabilities Let Remote Attacker Execute Malicious Code

Posted on By CWS

Cisco has disclosed a number of crucial vulnerabilities in Unified Contact Middle Categorical (CCX) that enable unauthenticated distant attackers to execute malicious code and escalate privileges.

The vulnerabilities have an effect on the Java Distant Technique Invocation (RMI) course of and authentication mechanisms, probably compromising complete contact heart deployments.

RCE and Authentication Bypass Vulnerability

The first vulnerability, CVE-2025-20354, has a crucial CVSS rating of 9.8, permitting attackers to add arbitrary recordsdata by way of the Java RMI course of with out authentication.

Profitable exploitation permits attackers to execute instructions with root privileges on affected programs.

The vulnerability stems from improper authentication mechanisms in Cisco Unified CCX, leaving organizations’ contact heart infrastructure uncovered to finish compromise.

Attackers can leverage this flaw to ascertain persistent entry, steal delicate buyer information, or deploy ransomware throughout complete contact heart networks.

CVE-2025-20358 presents an equally harmful authentication bypass affecting the CCX Editor software.

Rated 9.4 on the CVSS scale, this vulnerability permits attackers to redirect the authentication move to malicious servers, tricking the CCX Editor into believing respectable authentication occurred.

As soon as bypassed, attackers achieve administrative permissions to create and execute arbitrary scripts as inside non-root customers.

This dual-vulnerability mixture creates a classy assault chain that permits distant attackers to escalate privileges and preserve management over contact heart operations progressively.

CVE IDVulnerability TypeCVSS ScoreCVE-2025-20354Remote Code Execution9.8CVE-2025-20358Authentication Bypass9.4

Cisco has launched software program updates addressing each vulnerabilities, with no workarounds out there.

Organizations operating Unified CCX model 12.5 SU3 and earlier should improve instantly to model 12.5 SU3 ES07, whereas customers on model 15.0 should set up model 15.0 ES01.

The vulnerabilities have an effect on all Unified CCX configurations no matter deployment settings. Different Cisco merchandise, together with Unified Contact Middle Enterprise (CCE) and Packaged Contact Middle Enterprise, stay unaffected.

Comply with us on Google Information, LinkedIn, and X for every day cybersecurity updates. Contact us to function your tales.

Cyber Security News Tags:, , , , , , , , , ,

Related Posts

RapperBot Hijacking Devices to Launch DDoS Attack In a Split Second RapperBot Hijacking Devices to Launch DDoS Attack In a Split Second Cyber Security News
New ClickFix Attack Uses Fake BBC News Page and Fraudulent Cloudflare Verification to Trick Users New ClickFix Attack Uses Fake BBC News Page and Fraudulent Cloudflare Verification to Trick Users Cyber Security News
Beware of Solana Phishing Attacks That Let Hackers Initiate Unauthorized Account Transfer Beware of Solana Phishing Attacks That Let Hackers Initiate Unauthorized Account Transfer Cyber Security News
Russian Hacking Groups Gamaredon and Turla Attacking Organizations to Deploy Kazuar Backdoor Russian Hacking Groups Gamaredon and Turla Attacking Organizations to Deploy Kazuar Backdoor Cyber Security News
NVIDIA VApp for Windows Vulnerability Let Attackers Execute Malicious Code NVIDIA VApp for Windows Vulnerability Let Attackers Execute Malicious Code Cyber Security News
Grafana Vulnerabilities Allow User Redirection to Malicious Sites and Code Execution in Dashboards Grafana Vulnerabilities Allow User Redirection to Malicious Sites and Code Execution in Dashboards Cyber Security News