Lucene search

[email protected]CVE-2023-20061

HistoryMar 03, 2023 - 4:15 p.m.

CVE-2023-20061

2023-03-0316:15:09

CWE-200

CWE-668

[email protected]

web.nvd.nist.gov

cisco

unified intelligence center

cve-2023-20061

vulnerability

authenticated

remote attacker

sensitive information

ssrf

software updates

nvd

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.0%

JSON

Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote attacker to collect sensitive information or perform a server-side request forgery (SSRF) attack on an affected system. Cisco plans to release software updates that address these vulnerabilities.

Affected configurations

NVD

Node

ciscopackaged_contact_center_enterpriseMatch-

ciscounified_contact_center_enterpriseMatch-

ciscounified_contact_center_expressMatch-

ciscounified_intelligence_centerRange<12.6\(2\)

CPENameOperatorVersion
cisco:packaged_contact_center_enterprisecisco packaged contact center enterpriseeq-
cisco:unified_contact_center_enterprisecisco unified contact center enterpriseeq-
cisco:unified_contact_center_expresscisco unified contact center expresseq-
cisco:unified_intelligence_centercisco unified intelligence centerlt12.6\(2\)

CPE	Name	Operator	Version
cisco:packaged_contact_center_enterprise	cisco packaged contact center enterprise	eq	-
cisco:unified_contact_center_enterprise	cisco unified contact center enterprise	eq	-
cisco:unified_contact_center_express	cisco unified contact center express	eq	-
cisco:unified_intelligence_center	cisco unified intelligence center	lt	12.6\(2\)

CNA Affected

[
  {
    "vendor": "Cisco",
    "product": "Cisco Unified Intelligence Center ",
    "versions": [
      {
        "version": "n/a",
        "status": "affected"
      }
    ]
  }
]