Design/Logic Flaw

2023-08-3017:15:00

PRIOn knowledge base

www.prio-n.com

cisco

vulnerability

remote attacker

privileges

root access

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.7%

JSON

A vulnerability in Cisco Emergency Responder, Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unity Connection could allow an authenticated, remote attacker to elevate privileges to root on an affected device.

This vulnerability exists because the application does not properly restrict the files that are being used for upgrades. An attacker could exploit this vulnerability by providing a crafted upgrade file. A successful exploit could allow the attacker to elevate privileges to root. To exploit this vulnerability, the attacker must have valid platform administrator credentials on an affected device.

CPENameOperatorVersion
emergency_respondereq14.0.0-su3
emergency_respondereq12.5.1-su8-a
emergency_respondereq12.5.1-su4
unified_communications_managereq12.5.1-su8
unified_communications_managereq12.5.1-su8
unity_connectioneq14.0.0-su3
unity_connectioneq12.51.0-su7
unity_connectioneq12.51.0-su8
unity_connectioneq14.0.0-su2
unity_connectioneq12.51.0-su6

Name	Operator	Version
emergency_responder	eq	14.0.0-su3
emergency_responder	eq	12.5.1-su8-a
emergency_responder	eq	12.5.1-su4
unified_communications_manager	eq	12.5.1-su8
unified_communications_manager	eq	12.5.1-su8
unity_connection	eq	14.0.0-su3
unity_connection	eq	12.51.0-su7
unity_connection	eq	12.51.0-su8
unity_connection	eq	14.0.0-su2
unity_connection	eq	12.51.0-su6