5 matches found
Cisco Unified Contact Center Express Insecure Deserialization (CVE-2020-3280)
An insecure deserialization vulnerability exists in the Cisco Unified Contact Center Express. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2020-3280
A vulnerability in the Java Remote Management Interface of Cisco Unified Contact Center Express Unified CCX could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to insecure deserialization of user-supplied content by the affecte...
CVE-2020-3280
CVE-2020-3280 affects Cisco Unified Contact Center Express (Unified CCX) via insecure deserialization in the Java Remote Management Interface, enabling an unauthenticated, remote attacker to execute code as root by sending a malicious serialized Java object to a specific listener. Cisco’s advisor...
Critical Cisco Bug in Unified CCX Allows Remote Code Execution
Cisco has hurried out a fix out for a critical remote code-execution flaw in its customer interaction management solution, Cisco Unified Contact Center Express CCX. Cisco’s Unified CCX software is touted as a “contact center in a box” that allows companies to deploy customer-care applications. Th...
CVE-2020-3280 Cisco Unified CCX Preauth RCE
A vulnerability in the Java Remote Management Interface of Cisco Unified Contact Center Express Unified CCX could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to insecure deserialization of user-supplied content by the affecte...