Lucene search
K

5 matches found

Check Point Advisories
Check Point Advisories
added 2020/10/26 12:0 a.m.4 views

Cisco Unified Contact Center Express Insecure Deserialization (CVE-2020-3280)

An insecure deserialization vulnerability exists in the Cisco Unified Contact Center Express. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS5.5AI score0.06945EPSS
Exploits0
NVD
NVD
added 2020/05/22 6:15 a.m.28 views

CVE-2020-3280

A vulnerability in the Java Remote Management Interface of Cisco Unified Contact Center Express Unified CCX could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to insecure deserialization of user-supplied content by the affecte...

10CVSS9.8AI score0.06945EPSS
Exploits0References1
CVE
CVE
added 2020/05/22 5:15 a.m.63 views

CVE-2020-3280

CVE-2020-3280 affects Cisco Unified Contact Center Express (Unified CCX) via insecure deserialization in the Java Remote Management Interface, enabling an unauthenticated, remote attacker to execute code as root by sending a malicious serialized Java object to a specific listener. Cisco’s advisor...

10CVSS9.8AI score0.06945EPSS
Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2020/05/21 3:44 p.m.965 views

Critical Cisco Bug in Unified CCX Allows Remote Code Execution

Cisco has hurried out a fix out for a critical remote code-execution flaw in its customer interaction management solution, Cisco Unified Contact Center Express CCX. Cisco’s Unified CCX software is touted as a “contact center in a box” that allows companies to deploy customer-care applications. Th...

10CVSS1AI score0.26869EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2020/05/20 12:0 a.m.31 views

CVE-2020-3280 Cisco Unified CCX Preauth RCE

A vulnerability in the Java Remote Management Interface of Cisco Unified Contact Center Express Unified CCX could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to insecure deserialization of user-supplied content by the affecte...

10CVSS4AI score0.06945EPSS
Exploits0References2
Rows per page
Query Builder