Search

Find a vulnerability

Search criteria

    6 vulnerabilities found for Cisco Prime Collaboration Deployment by Cisco

    CVE-2025-20112 (GCVE-0-2025-20112)

    Vulnerability from nvd – Published: 2025-05-21 16:19 – Updated: 2026-02-26 18:28
    VLAI
    Title
    Cisco Unified Communications Products Privilege Escalation Vulnerability
    Summary
    A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileges to root on an affected device. This vulnerability is due to excessive permissions that have been assigned to system commands. An attacker could exploit this vulnerability by executing crafted commands on the underlying operating system. A successful exploit could allow the attacker to escape the restricted shell and gain root privileges on the underlying operating system of an affected device. To successfully exploit this vulnerability, an attacker would need administrative access to the ESXi hypervisor.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Emergency Responder Affected: 12.5(1a)
    Affected: 12.5(1)SU1
    Affected: 12.5(1)
    Affected: 12.5(1)SU2
    Affected: 12.5(1)SU3
    Affected: 12.5(1)SU4
    Affected: 14
    Affected: 12.5(1)SU5
    Affected: 14SU1
    Affected: 12.5(1)SU6
    Affected: 14SU2
    Affected: 12.5(1)SU7
    Affected: 14SU3
    Affected: 12.5(1)SU8
    Affected: 12.5(1)SU8a
    Affected: 12.5(1)SU8b
    Affected: 14SU3a
    Affected: 15
    Affected: 15SU1
    Affected: 15SU1a
    Affected: 14SU4
    Affected: 12.5(1)SU9
    Create a notification for this product.
    Cisco Cisco Finesse Affected: 11.0(1)ES_Rollback
    Affected: 10.5(1)ES4
    Affected: 11.6(1)ES3
    Affected: 11.0(1)ES2
    Affected: 12.0(1)ES2
    Affected: 10.5(1)ES3
    Affected: 11.0(1)
    Affected: 11.6(1)FIPS
    Affected: 11.6(1)ES4
    Affected: 11.0(1)ES3
    Affected: 10.5(1)ES6
    Affected: 11.0(1)ES7
    Affected: 11.5(1)ES4
    Affected: 10.5(1)ES8
    Affected: 11.5(1)
    Affected: 11.6(1)
    Affected: 10.5(1)ES10
    Affected: 11.6(1)ES2
    Affected: 11.6(1)ES
    Affected: 11.0(1)ES6
    Affected: 11.0(1)ES4
    Affected: 12.0(1)
    Affected: 11.6(1)ES7
    Affected: 10.5(1)ES7
    Affected: 11.6(1)ES8
    Affected: 11.5(1)ES1
    Affected: 11.6(1)ES1
    Affected: 11.5(1)ES5
    Affected: 11.0(1)ES1
    Affected: 10.5(1)
    Affected: 11.6(1)ES6
    Affected: 10.5(1)ES2
    Affected: 12.0(1)ES1
    Affected: 11.0(1)ES5
    Affected: 10.5(1)ES5
    Affected: 11.5(1)ES3
    Affected: 11.5(1)ES2
    Affected: 10.5(1)ES9
    Affected: 11.6(1)ES5
    Affected: 11.6(1)ES9
    Affected: 11.5(1)ES6
    Affected: 10.5(1)ES1
    Affected: 12.5(1)
    Affected: 12.0(1)ES3
    Affected: 11.6(1)ES10
    Affected: 12.5(1)ES1
    Affected: 12.5(1)ES2
    Affected: 12.0(1)ES4
    Affected: 12.5(1)ES3
    Affected: 12.0(1)ES5
    Affected: 12.5(1)ES4
    Affected: 12.0(1)ES6
    Affected: 12.5(1)ES5
    Affected: 12.5(1)ES6
    Affected: 12.0(1)ES7
    Affected: 12.6(1)
    Affected: 12.5(1)ES7
    Affected: 11.6(1)ES11
    Affected: 12.6(1)ES1
    Affected: 12.0(1)ES8
    Affected: 12.5(1)ES8
    Affected: 12.6(1)ES2
    Affected: 12.6(1)ES3
    Affected: 12.6(1)ES4
    Affected: 12.6(1)ES5
    Affected: 12.5(2)
    Affected: 12.5(1)_SU
    Affected: 12.5(1)SU
    Affected: 12.6(1)ES6
    Affected: 12.5(1)SU ES1
    Affected: 12.6(1)ES7
    Affected: 12.6(1)ES7_ET
    Affected: 12.6(2)
    Affected: 12.6(1)ES8
    Affected: 12.6(1)ES9
    Affected: 12.6(2)ES1
    Affected: 12.6(1)ES10
    Affected: 12.5(1)SU ES2
    Affected: 12.6(1)ES11
    Affected: 12.6(2)ES2
    Affected: 12.6(2)ES3
    Affected: 12.5(1)SU ES3
    Affected: 12.6(2)ES4
    Affected: 12.6(2)ES6
    Create a notification for this product.
    Cisco Cisco Prime Collaboration Deployment Affected: 11.5(1)
    Affected: 11.0(1a)
    Affected: 11.5(1)SU1
    Affected: 10.5(3)
    Affected: 12.6(1)
    Affected: 11.0(1)
    Affected: 11.6(2)
    Affected: 12.1(1)
    Affected: 12.0(1a)
    Affected: 11.5(3)
    Affected: 10.5(1)
    Affected: 12.5(1)
    Affected: 11.5(2)
    Affected: 11.6(1)
    Affected: 10.5(2)
    Affected: 10.5(3)SU1
    Affected: 14
    Affected: 14SU1
    Affected: 14SU2
    Affected: 14SU3
    Affected: 15
    Affected: 15SU1
    Affected: 14SU4
    Create a notification for this product.
    Cisco Cisco SocialMiner Affected: 12.5(1)ES01
    Affected: 10.5(1)
    Affected: 11.6(1)
    Affected: 10.6(1)
    Affected: 12.0(1)ES04
    Affected: 10.6(2)
    Affected: 12.5(1)
    Affected: 11.6(2)
    Affected: 12.0(1)
    Affected: 12.0(1)ES02
    Affected: 11.0(1)
    Affected: 11.5(1)
    Affected: 11.5(1)SU1
    Affected: 12.0(1)ES03
    Affected: 12.5(1)SU3
    Affected: 12.5(1)SU1
    Affected: 12.5(1)SU2
    Create a notification for this product.
    Cisco Cisco Unified Communications Manager Affected: 12.5(1)SU2
    Affected: 12.5(1)SU1
    Affected: 12.5(1)
    Affected: 12.5(1)SU3
    Affected: 12.5(1)SU4
    Affected: 14
    Affected: 12.5(1)SU5
    Affected: 14SU1
    Affected: 12.5(1)SU6
    Affected: 14SU2
    Affected: 12.5(1)SU7
    Affected: 12.5(1)SU7a
    Affected: 14SU3
    Affected: 12.5(1)SU8
    Affected: 12.5(1)SU8a
    Affected: 15
    Affected: 15SU1
    Affected: 14SU4
    Affected: 14SU4a
    Affected: 15SU1a
    Affected: 12.5(1)SU9
    Create a notification for this product.
    Cisco Cisco Unified Communications Manager IM and Presence Service Affected: 12.5(1)
    Affected: 12.5(1)SU1
    Affected: 12.5(1)SU2
    Affected: 12.5(1)SU3
    Affected: 12.5(1)SU4
    Affected: 14
    Affected: 12.5(1)SU5
    Affected: 14SU1
    Affected: 12.5(1)SU6
    Affected: 14SU2
    Affected: 14SU2a
    Affected: 12.5(1)SU7
    Affected: 14SU3
    Affected: 12.5(1)SU8
    Affected: 15
    Affected: 15SU1
    Affected: 14SU4
    Affected: 12.5(1)SU9
    Create a notification for this product.
    Cisco Cisco Unified Contact Center Express Affected: 10.5(1)SU1
    Affected: 10.6(1)
    Affected: 11.6(1)
    Affected: 10.6(1)SU1
    Affected: 10.6(1)SU3
    Affected: 11.6(2)
    Affected: 12.0(1)
    Affected: 10.0(1)SU1
    Affected: 11.0(1)SU1
    Affected: 11.5(1)SU1
    Affected: 10.5(1)
    Affected: 12.5(1)
    Affected: 12.5(1)SU1
    Affected: 12.5(1)SU2
    Affected: 12.5(1)SU3
    Affected: 12.5(1)_SU03_ES01
    Affected: 12.5(1)_SU03_ES02
    Affected: 12.5(1)_SU02_ES03
    Affected: 12.5(1)_SU02_ES04
    Affected: 12.5(1)_SU02_ES02
    Affected: 12.5(1)_SU01_ES02
    Affected: 12.5(1)_SU01_ES03
    Affected: 12.5(1)_SU02_ES01
    Affected: 11.6(2)ES07
    Affected: 11.6(2)ES08
    Affected: 12.5(1)_SU01_ES01
    Affected: 12.0(1)ES04
    Affected: 12.5(1)ES02
    Affected: 12.5(1)ES03
    Affected: 11.6(2)ES06
    Affected: 12.5(1)ES01
    Affected: 12.0(1)ES03
    Affected: 12.0(1)ES01
    Affected: 11.6(2)ES05
    Affected: 12.0(1)ES02
    Affected: 11.6(2)ES04
    Affected: 11.6(2)ES03
    Affected: 11.6(2)ES02
    Affected: 11.6(2)ES01
    Affected: 10.6(1)SU3ES03
    Affected: 11.0(1)SU1ES03
    Affected: 10.6(1)SU3ES01
    Affected: 10.5(1)SU1ES10
    Affected: 10.0(1)SU1ES04
    Affected: 11.5(1)SU1ES03
    Affected: 11.6(1)ES02
    Affected: 11.5(1)ES01
    Affected: 9.0(2)SU3ES04
    Affected: 10.6(1)SU2
    Affected: 10.6(1)SU2ES04
    Affected: 11.6(1)ES01
    Affected: 10.6(1)SU3ES02
    Affected: 11.5(1)SU1ES02
    Affected: 11.5(1)SU1ES01
    Affected: 8.5(1)SU4ES09
    Affected: 8.5(1)
    Affected: 11.0(1)SU1ES02
    Affected: 12.5(1)_SU03_ES03
    Affected: 12.5(1)_SU03_ES04
    Affected: 12.5(1)_SU03_ES05
    Affected: 12.5(1)_SU03_ES06
    Create a notification for this product.
    Cisco Cisco Unified Intelligence Center Affected: 11.6(1)
    Affected: 10.5(1)
    Affected: 11.0(1)
    Affected: 11.5(1)
    Affected: 12.0(1)
    Affected: 12.5(1)
    Affected: 11.0(2)
    Affected: 12.6(1)
    Affected: 12.5(1)SU
    Affected: 12.6(1)_ET
    Affected: 12.6(1)_ES05_ET
    Affected: 11.0(3)
    Affected: 12.6(2)
    Affected: 12.6(2)_504_Issue_ET
    Affected: 12.6.1_ExcelIssue_ET
    Affected: 12.6(2)_Permalink_ET
    Affected: 12.6.2_CSCwk19536_ET
    Affected: 12.6.2_CSCwm96922_ET
    Affected: 12.6.2_Amq_OOS_ET
    Affected: 12.5(2)ET_CSCwi79933
    Affected: 12.6(2)_ET
    Affected: 12.6.2_CSCwn48501_ET
    Create a notification for this product.
    Cisco Cisco Unity Connection Affected: 12.5(1)
    Affected: 12.5(1)SU1
    Affected: 12.5(1)SU2
    Affected: 12.5(1)SU3
    Affected: 12.5(1)SU4
    Affected: 14
    Affected: 12.5(1)SU5
    Affected: 14SU1
    Affected: 12.5(1)SU6
    Affected: 14SU2
    Affected: 12.5(1)SU7
    Affected: 14SU3
    Affected: 12.5(1)SU8
    Affected: 14SU3a
    Affected: 12.5(1)SU8a
    Affected: 15
    Affected: 15SU1
    Affected: 14SU4
    Affected: 12.5(1)SU9
    Create a notification for this product.
    Cisco Cisco Virtualized Voice Browser Affected: 11.0(1)
    Affected: 11.6(1)_ES84
    Affected: 11.5(1)_ES54
    Affected: 11.5(1)_ES27
    Affected: 11.5(1)
    Affected: 11.5(1)ES36
    Affected: 12.0(1)_ES01
    Affected: 11.6(1)_ES85
    Affected: 12.5(1)_ES05
    Affected: 11.5(1)_ES32
    Affected: 11.6(1)_ES83
    Affected: 11.5(1)_ES29
    Affected: 12.0(1)_ES06
    Affected: 12.5(1)
    Affected: 12.0(1)_ES07
    Affected: 11.6(1)_ES80
    Affected: 12.0(1)_ES05
    Affected: 11.5(1)_ES36
    Affected: 11.5(1)_ES53
    Affected: 12.5(1)_ES08
    Affected: 11.5(1)ES43
    Affected: 12.0(1)_ES03
    Affected: 11.6(1)_ES86
    Affected: 12.0(1)_ES04
    Affected: 11.5(1)ES27
    Affected: 12.5(1)_ES03
    Affected: 11.6(1)_ES88
    Affected: 12.5(1)_ES06
    Affected: 11.6(1)_ES82
    Affected: 11.6(1)
    Affected: 11.5(1)ES29
    Affected: 12.5(1)_ES04
    Affected: 12.5(1)_ES07
    Affected: 11.6(1)_ES87
    Affected: 11.6(1)_ES81
    Affected: 12.0(1)
    Affected: 11.6(1)_ES22
    Affected: 11.5(1)_ES43
    Affected: 11.5(1)ES32
    Affected: 12.0(1)_ES02
    Affected: 12.5(1)_ES02
    Affected: 12.6(1)
    Affected: 12.5(1)_ES09
    Affected: 12.6(1)_ES01
    Affected: 12.0(1)_ES08
    Affected: 12.5(1)_ES10
    Affected: 12.6(1)_ES02
    Affected: 12.5(1)_ES11
    Affected: 12.5(1)_ES12
    Affected: 12.6(1)_ES03
    Affected: 12.5(1)_ES13
    Affected: 12.5(1)_ES14
    Affected: 12.6(1)_ES04
    Affected: 12.6(1)_ES05
    Affected: 12.5(1)_ES15
    Affected: 12.6(1)_ES06
    Affected: 12.6(1)_ET
    Affected: 12.5(1)_ES16
    Affected: 12.5(1)SU
    Affected: 12.5(1)_SU
    Affected: 12.5(1)_SU_ES01
    Affected: 12.6(1)_ES07
    Affected: 12.6(2)
    Affected: 12.5(1)_ES17
    Affected: 12.6(1)_ES08
    Affected: 12.6(1)_ES09
    Affected: 12.6(1)_ES10
    Affected: 12.5(1)_SU_ES02
    Affected: 12.6(2)_ES01
    Affected: 12.6(2)_ET01
    Affected: 12.5(2)_ET
    Affected: 12.6(2)_ES02
    Affected: 12.6(2)_ET_Streaming
    Affected: 12.6(2)ET_Transcribe
    Affected: 12.6(2)_ES03
    Affected: 12.6(2)ET_NuanceMix
    Affected: 12.6(2)ET_FileUpload
    Affected: 12.6(2)_ET02
    Affected: 12.6(2)_ES04
    Affected: 12.6.2ET_RTPfallback
    Affected: 12.6.2ET_CSCwf55306
    Affected: 12.6.2_ET_CSCwj36712
    Affected: 12.5.2 ET-CSCwj33374
    Affected: 12.5(1) SU ET
    Affected: 12.6(2)ET_CSCwj87296
    Affected: 12.6(2)_ES05
    Affected: 12.5.2_ET_CSCvz27014
    Affected: 12.6(2)_ET
    Affected: 12.6.2-ET
    Affected: 12.6(2)ET_CSCwk83135
    Affected: 12.6.2_ET_CX_ALAW
    Affected: 12.6.2-ET01-SSL
    Affected: 12.6(2)_ES06
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-20112",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-22T03:55:23.838603Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T18:28:03.732Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Emergency Responder",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1a)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU4"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU5"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU6"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8a"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8b"
                },
                {
                  "status": "affected",
                  "version": "14SU3a"
                },
                {
                  "status": "affected",
                  "version": "15"
                },
                {
                  "status": "affected",
                  "version": "15SU1"
                },
                {
                  "status": "affected",
                  "version": "15SU1a"
                },
                {
                  "status": "affected",
                  "version": "14SU4"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU9"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Finesse",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "11.0(1)ES_Rollback"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)FIPS"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES8"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES10"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES8"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES9"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES9"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES10"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES11"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES8"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES8"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "12.5(2)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU ES1"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES7_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES8"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES9"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ES1"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES10"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU ES2"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES11"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ES2"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ES3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU ES3"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ES4"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ES6"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Prime Collaboration Deployment",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "10.5(3)"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.1(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "11.5(3)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(2)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.5(2)"
                },
                {
                  "status": "affected",
                  "version": "10.5(3)SU1"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                },
                {
                  "status": "affected",
                  "version": "15"
                },
                {
                  "status": "affected",
                  "version": "15SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU4"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco SocialMiner",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)ES01"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES04"
                },
                {
                  "status": "affected",
                  "version": "10.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES02"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES03"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Communications Manager",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU4"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU5"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU6"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7a"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8a"
                },
                {
                  "status": "affected",
                  "version": "15"
                },
                {
                  "status": "affected",
                  "version": "15SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU4"
                },
                {
                  "status": "affected",
                  "version": "14SU4a"
                },
                {
                  "status": "affected",
                  "version": "15SU1a"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU9"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Communications Manager IM and Presence Service",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU4"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU5"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU6"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                },
                {
                  "status": "affected",
                  "version": "14SU2a"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8"
                },
                {
                  "status": "affected",
                  "version": "15"
                },
                {
                  "status": "affected",
                  "version": "15SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU4"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU9"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Contact Center Express",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)"
                },
                {
                  "status": "affected",
                  "version": "10.0(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES01"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU02_ES03"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU02_ES04"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU02_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU01_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU01_ES03"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU02_ES01"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES07"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES08"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU01_ES01"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES04"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES03"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES06"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES01"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES03"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES01"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES05"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES02"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES04"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES03"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES02"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES01"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU3ES03"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)SU1ES03"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU3ES01"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)SU1ES10"
                },
                {
                  "status": "affected",
                  "version": "10.0(1)SU1ES04"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1ES03"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES02"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES01"
                },
                {
                  "status": "affected",
                  "version": "9.0(2)SU3ES04"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU2ES04"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES01"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU3ES02"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1ES02"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1ES01"
                },
                {
                  "status": "affected",
                  "version": "8.5(1)SU4ES09"
                },
                {
                  "status": "affected",
                  "version": "8.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)SU1ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES03"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES04"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES05"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES06"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Intelligence Center",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(2)"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES05_ET"
                },
                {
                  "status": "affected",
                  "version": "11.0(3)"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_504_Issue_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.1_ExcelIssue_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_Permalink_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_CSCwk19536_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_CSCwm96922_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_Amq_OOS_ET"
                },
                {
                  "status": "affected",
                  "version": "12.5(2)ET_CSCwi79933"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_CSCwn48501_ET"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unity Connection",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU4"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU5"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU6"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8"
                },
                {
                  "status": "affected",
                  "version": "14SU3a"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8a"
                },
                {
                  "status": "affected",
                  "version": "15"
                },
                {
                  "status": "affected",
                  "version": "15SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU4"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU9"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Virtualized Voice Browser",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES84"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES54"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES27"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES36"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES01"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES85"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES05"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES32"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES83"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES29"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES06"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES07"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES80"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES05"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES36"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES53"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES08"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES43"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES03"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES86"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES04"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES27"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES03"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES88"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES06"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES82"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES29"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES04"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES07"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES87"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES81"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES22"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES43"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES32"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES09"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES01"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES08"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES10"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES11"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES12"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES03"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES13"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES14"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES04"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES05"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES15"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES06"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ET"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES16"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU_ES01"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES07"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES17"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES08"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES09"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES10"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES01"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ET01"
                },
                {
                  "status": "affected",
                  "version": "12.5(2)_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ET_Streaming"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ET_Transcribe"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES03"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ET_NuanceMix"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ET_FileUpload"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ET02"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES04"
                },
                {
                  "status": "affected",
                  "version": "12.6.2ET_RTPfallback"
                },
                {
                  "status": "affected",
                  "version": "12.6.2ET_CSCwf55306"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_ET_CSCwj36712"
                },
                {
                  "status": "affected",
                  "version": "12.5.2 ET-CSCwj33374"
                },
                {
                  "status": "affected",
                  "version": "12.5(1) SU ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ET_CSCwj87296"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES05"
                },
                {
                  "status": "affected",
                  "version": "12.5.2_ET_CSCvz27014"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.2-ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ET_CSCwk83135"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_ET_CX_ALAW"
                },
                {
                  "status": "affected",
                  "version": "12.6.2-ET01-SSL"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES06"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileges to root on an affected device.\r\n\r\nThis vulnerability is due to excessive permissions that have been assigned to system commands.\u0026nbsp;An attacker could exploit this vulnerability by executing crafted commands on the underlying operating system. A successful exploit could allow the attacker to escape the restricted shell and gain root privileges on the underlying operating system of an affected device. To successfully exploit this vulnerability, an attacker would need administrative access to the ESXi hypervisor."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-268",
                  "description": "Privilege Chaining",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-05-21T16:19:24.562Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-cucm-kkhZbHR5",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-kkhZbHR5"
            }
          ],
          "source": {
            "advisory": "cisco-sa-cucm-kkhZbHR5",
            "defects": [
              "CSCwi52980"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Unified Communications Products Privilege Escalation Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2025-20112",
        "datePublished": "2025-05-21T16:19:24.562Z",
        "dateReserved": "2024-10-10T19:15:13.210Z",
        "dateUpdated": "2026-02-26T18:28:03.732Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2023-20060 (GCVE-0-2023-20060)

    Vulnerability from nvd – Published: 2024-11-15 15:20 – Updated: 2024-11-15 15:38
    VLAI
    Title
    Cisco Prime Collaboration Deployment Cross-Site Scripting Vulnerability
    Summary
    A vulnerability in the web-based management interface of Cisco Prime Collaboration Deployment could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. Cisco plans to release software updates that address this vulnerability. There are no workarounds that address this vulnerability.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Prime Collaboration Deployment Affected: 11.5(1)
    Affected: 11.0(1a)
    Affected: 11.5(1)SU1
    Affected: 10.5(3)
    Affected: 12.6(1)
    Affected: 11.0(1)
    Affected: 11.6(2)
    Affected: 12.1(1)
    Affected: 12.0(1a)
    Affected: 11.5(3)
    Affected: 10.5(1)
    Affected: 12.5(1)
    Affected: 11.5(2)
    Affected: 11.6(1)
    Affected: 10.5(2)
    Affected: 10.5(3)SU1
    Affected: 14
    Affected: 14SU1
    Affected: 14SU2
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20060",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-15T15:37:46.128428Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-15T15:38:06.025Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Prime Collaboration Deployment",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "10.5(3)"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.1(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "11.5(3)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(2)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.5(2)"
                },
                {
                  "status": "affected",
                  "version": "10.5(3)SU1"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the web-based management interface of Cisco Prime Collaboration Deployment could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack against a user of the interface.\r\n\r\nThis vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.\r\nCisco plans to release software updates that address this vulnerability. There are no workarounds that address this vulnerability."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-15T15:20:01.451Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-pcd-xss-jDXpjm7",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pcd-xss-jDXpjm7"
            }
          ],
          "source": {
            "advisory": "cisco-sa-pcd-xss-jDXpjm7",
            "defects": [
              "CSCwc83342"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Prime Collaboration Deployment Cross-Site Scripting Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20060",
        "datePublished": "2024-11-15T15:20:01.451Z",
        "dateReserved": "2022-10-27T18:47:50.320Z",
        "dateUpdated": "2024-11-15T15:38:06.025Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20259 (GCVE-0-2023-20259)

    Vulnerability from nvd – Published: 2023-10-04 16:13 – Updated: 2024-08-02 09:05
    VLAI
    Summary
    A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow an unauthenticated, remote attacker to cause high CPU utilization, which could impact access to the web-based management interface and cause delays with call processing. This API is not used for device management and is unlikely to be used in normal operations of the device. This vulnerability is due to improper API authentication and incomplete validation of the API request. An attacker could exploit this vulnerability by sending a crafted HTTP request to a specific API on the device. A successful exploit could allow the attacker to cause a denial of service (DoS) condition due to high CPU utilization, which could negatively impact user traffic and management access. When the attack stops, the device will recover without manual intervention.
    CWE
    • CWE-400 - Uncontrolled Resource Consumption
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:05:36.904Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-cucm-apidos-PGsDcdNF",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-apidos-PGsDcdNF"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Emergency Responder",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                }
              ]
            },
            {
              "product": "Cisco Unity Connection",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "14SU3"
                }
              ]
            },
            {
              "product": "Cisco Unified Communications Manager",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7a"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                }
              ]
            },
            {
              "product": "Cisco Unified Communications Manager IM and Presence Service",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                }
              ]
            },
            {
              "product": "Cisco Prime Collaboration Deployment",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "14SU3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow an unauthenticated, remote attacker to cause high CPU utilization, which could impact access to the web-based management interface and cause delays with call processing. This API is not used for device management and is unlikely to be used in normal operations of the device.\r\n\r This vulnerability is due to improper API authentication and incomplete validation of the API request. An attacker could exploit this vulnerability by sending a crafted HTTP request to a specific API on the device. A successful exploit could allow the attacker to cause a denial of service (DoS) condition due to high CPU utilization, which could negatively impact user traffic and management access. When the attack stops, the device will recover without manual intervention."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "Uncontrolled Resource Consumption",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-25T16:58:34.054Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-cucm-apidos-PGsDcdNF",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-apidos-PGsDcdNF"
            }
          ],
          "source": {
            "advisory": "cisco-sa-cucm-apidos-PGsDcdNF",
            "defects": [
              "CSCwf44755",
              "CSCwf62074",
              "CSCwf62081",
              "CSCwf62094",
              "CSCwf62080"
            ],
            "discovery": "INTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20259",
        "datePublished": "2023-10-04T16:13:30.662Z",
        "dateReserved": "2022-10-27T18:47:50.372Z",
        "dateUpdated": "2024-08-02T09:05:36.904Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-20112 (GCVE-0-2025-20112)

    Vulnerability from cvelistv5 – Published: 2025-05-21 16:19 – Updated: 2026-02-26 18:28
    VLAI
    Title
    Cisco Unified Communications Products Privilege Escalation Vulnerability
    Summary
    A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileges to root on an affected device. This vulnerability is due to excessive permissions that have been assigned to system commands. An attacker could exploit this vulnerability by executing crafted commands on the underlying operating system. A successful exploit could allow the attacker to escape the restricted shell and gain root privileges on the underlying operating system of an affected device. To successfully exploit this vulnerability, an attacker would need administrative access to the ESXi hypervisor.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Emergency Responder Affected: 12.5(1a)
    Affected: 12.5(1)SU1
    Affected: 12.5(1)
    Affected: 12.5(1)SU2
    Affected: 12.5(1)SU3
    Affected: 12.5(1)SU4
    Affected: 14
    Affected: 12.5(1)SU5
    Affected: 14SU1
    Affected: 12.5(1)SU6
    Affected: 14SU2
    Affected: 12.5(1)SU7
    Affected: 14SU3
    Affected: 12.5(1)SU8
    Affected: 12.5(1)SU8a
    Affected: 12.5(1)SU8b
    Affected: 14SU3a
    Affected: 15
    Affected: 15SU1
    Affected: 15SU1a
    Affected: 14SU4
    Affected: 12.5(1)SU9
    Create a notification for this product.
    Cisco Cisco Finesse Affected: 11.0(1)ES_Rollback
    Affected: 10.5(1)ES4
    Affected: 11.6(1)ES3
    Affected: 11.0(1)ES2
    Affected: 12.0(1)ES2
    Affected: 10.5(1)ES3
    Affected: 11.0(1)
    Affected: 11.6(1)FIPS
    Affected: 11.6(1)ES4
    Affected: 11.0(1)ES3
    Affected: 10.5(1)ES6
    Affected: 11.0(1)ES7
    Affected: 11.5(1)ES4
    Affected: 10.5(1)ES8
    Affected: 11.5(1)
    Affected: 11.6(1)
    Affected: 10.5(1)ES10
    Affected: 11.6(1)ES2
    Affected: 11.6(1)ES
    Affected: 11.0(1)ES6
    Affected: 11.0(1)ES4
    Affected: 12.0(1)
    Affected: 11.6(1)ES7
    Affected: 10.5(1)ES7
    Affected: 11.6(1)ES8
    Affected: 11.5(1)ES1
    Affected: 11.6(1)ES1
    Affected: 11.5(1)ES5
    Affected: 11.0(1)ES1
    Affected: 10.5(1)
    Affected: 11.6(1)ES6
    Affected: 10.5(1)ES2
    Affected: 12.0(1)ES1
    Affected: 11.0(1)ES5
    Affected: 10.5(1)ES5
    Affected: 11.5(1)ES3
    Affected: 11.5(1)ES2
    Affected: 10.5(1)ES9
    Affected: 11.6(1)ES5
    Affected: 11.6(1)ES9
    Affected: 11.5(1)ES6
    Affected: 10.5(1)ES1
    Affected: 12.5(1)
    Affected: 12.0(1)ES3
    Affected: 11.6(1)ES10
    Affected: 12.5(1)ES1
    Affected: 12.5(1)ES2
    Affected: 12.0(1)ES4
    Affected: 12.5(1)ES3
    Affected: 12.0(1)ES5
    Affected: 12.5(1)ES4
    Affected: 12.0(1)ES6
    Affected: 12.5(1)ES5
    Affected: 12.5(1)ES6
    Affected: 12.0(1)ES7
    Affected: 12.6(1)
    Affected: 12.5(1)ES7
    Affected: 11.6(1)ES11
    Affected: 12.6(1)ES1
    Affected: 12.0(1)ES8
    Affected: 12.5(1)ES8
    Affected: 12.6(1)ES2
    Affected: 12.6(1)ES3
    Affected: 12.6(1)ES4
    Affected: 12.6(1)ES5
    Affected: 12.5(2)
    Affected: 12.5(1)_SU
    Affected: 12.5(1)SU
    Affected: 12.6(1)ES6
    Affected: 12.5(1)SU ES1
    Affected: 12.6(1)ES7
    Affected: 12.6(1)ES7_ET
    Affected: 12.6(2)
    Affected: 12.6(1)ES8
    Affected: 12.6(1)ES9
    Affected: 12.6(2)ES1
    Affected: 12.6(1)ES10
    Affected: 12.5(1)SU ES2
    Affected: 12.6(1)ES11
    Affected: 12.6(2)ES2
    Affected: 12.6(2)ES3
    Affected: 12.5(1)SU ES3
    Affected: 12.6(2)ES4
    Affected: 12.6(2)ES6
    Create a notification for this product.
    Cisco Cisco Prime Collaboration Deployment Affected: 11.5(1)
    Affected: 11.0(1a)
    Affected: 11.5(1)SU1
    Affected: 10.5(3)
    Affected: 12.6(1)
    Affected: 11.0(1)
    Affected: 11.6(2)
    Affected: 12.1(1)
    Affected: 12.0(1a)
    Affected: 11.5(3)
    Affected: 10.5(1)
    Affected: 12.5(1)
    Affected: 11.5(2)
    Affected: 11.6(1)
    Affected: 10.5(2)
    Affected: 10.5(3)SU1
    Affected: 14
    Affected: 14SU1
    Affected: 14SU2
    Affected: 14SU3
    Affected: 15
    Affected: 15SU1
    Affected: 14SU4
    Create a notification for this product.
    Cisco Cisco SocialMiner Affected: 12.5(1)ES01
    Affected: 10.5(1)
    Affected: 11.6(1)
    Affected: 10.6(1)
    Affected: 12.0(1)ES04
    Affected: 10.6(2)
    Affected: 12.5(1)
    Affected: 11.6(2)
    Affected: 12.0(1)
    Affected: 12.0(1)ES02
    Affected: 11.0(1)
    Affected: 11.5(1)
    Affected: 11.5(1)SU1
    Affected: 12.0(1)ES03
    Affected: 12.5(1)SU3
    Affected: 12.5(1)SU1
    Affected: 12.5(1)SU2
    Create a notification for this product.
    Cisco Cisco Unified Communications Manager Affected: 12.5(1)SU2
    Affected: 12.5(1)SU1
    Affected: 12.5(1)
    Affected: 12.5(1)SU3
    Affected: 12.5(1)SU4
    Affected: 14
    Affected: 12.5(1)SU5
    Affected: 14SU1
    Affected: 12.5(1)SU6
    Affected: 14SU2
    Affected: 12.5(1)SU7
    Affected: 12.5(1)SU7a
    Affected: 14SU3
    Affected: 12.5(1)SU8
    Affected: 12.5(1)SU8a
    Affected: 15
    Affected: 15SU1
    Affected: 14SU4
    Affected: 14SU4a
    Affected: 15SU1a
    Affected: 12.5(1)SU9
    Create a notification for this product.
    Cisco Cisco Unified Communications Manager IM and Presence Service Affected: 12.5(1)
    Affected: 12.5(1)SU1
    Affected: 12.5(1)SU2
    Affected: 12.5(1)SU3
    Affected: 12.5(1)SU4
    Affected: 14
    Affected: 12.5(1)SU5
    Affected: 14SU1
    Affected: 12.5(1)SU6
    Affected: 14SU2
    Affected: 14SU2a
    Affected: 12.5(1)SU7
    Affected: 14SU3
    Affected: 12.5(1)SU8
    Affected: 15
    Affected: 15SU1
    Affected: 14SU4
    Affected: 12.5(1)SU9
    Create a notification for this product.
    Cisco Cisco Unified Contact Center Express Affected: 10.5(1)SU1
    Affected: 10.6(1)
    Affected: 11.6(1)
    Affected: 10.6(1)SU1
    Affected: 10.6(1)SU3
    Affected: 11.6(2)
    Affected: 12.0(1)
    Affected: 10.0(1)SU1
    Affected: 11.0(1)SU1
    Affected: 11.5(1)SU1
    Affected: 10.5(1)
    Affected: 12.5(1)
    Affected: 12.5(1)SU1
    Affected: 12.5(1)SU2
    Affected: 12.5(1)SU3
    Affected: 12.5(1)_SU03_ES01
    Affected: 12.5(1)_SU03_ES02
    Affected: 12.5(1)_SU02_ES03
    Affected: 12.5(1)_SU02_ES04
    Affected: 12.5(1)_SU02_ES02
    Affected: 12.5(1)_SU01_ES02
    Affected: 12.5(1)_SU01_ES03
    Affected: 12.5(1)_SU02_ES01
    Affected: 11.6(2)ES07
    Affected: 11.6(2)ES08
    Affected: 12.5(1)_SU01_ES01
    Affected: 12.0(1)ES04
    Affected: 12.5(1)ES02
    Affected: 12.5(1)ES03
    Affected: 11.6(2)ES06
    Affected: 12.5(1)ES01
    Affected: 12.0(1)ES03
    Affected: 12.0(1)ES01
    Affected: 11.6(2)ES05
    Affected: 12.0(1)ES02
    Affected: 11.6(2)ES04
    Affected: 11.6(2)ES03
    Affected: 11.6(2)ES02
    Affected: 11.6(2)ES01
    Affected: 10.6(1)SU3ES03
    Affected: 11.0(1)SU1ES03
    Affected: 10.6(1)SU3ES01
    Affected: 10.5(1)SU1ES10
    Affected: 10.0(1)SU1ES04
    Affected: 11.5(1)SU1ES03
    Affected: 11.6(1)ES02
    Affected: 11.5(1)ES01
    Affected: 9.0(2)SU3ES04
    Affected: 10.6(1)SU2
    Affected: 10.6(1)SU2ES04
    Affected: 11.6(1)ES01
    Affected: 10.6(1)SU3ES02
    Affected: 11.5(1)SU1ES02
    Affected: 11.5(1)SU1ES01
    Affected: 8.5(1)SU4ES09
    Affected: 8.5(1)
    Affected: 11.0(1)SU1ES02
    Affected: 12.5(1)_SU03_ES03
    Affected: 12.5(1)_SU03_ES04
    Affected: 12.5(1)_SU03_ES05
    Affected: 12.5(1)_SU03_ES06
    Create a notification for this product.
    Cisco Cisco Unified Intelligence Center Affected: 11.6(1)
    Affected: 10.5(1)
    Affected: 11.0(1)
    Affected: 11.5(1)
    Affected: 12.0(1)
    Affected: 12.5(1)
    Affected: 11.0(2)
    Affected: 12.6(1)
    Affected: 12.5(1)SU
    Affected: 12.6(1)_ET
    Affected: 12.6(1)_ES05_ET
    Affected: 11.0(3)
    Affected: 12.6(2)
    Affected: 12.6(2)_504_Issue_ET
    Affected: 12.6.1_ExcelIssue_ET
    Affected: 12.6(2)_Permalink_ET
    Affected: 12.6.2_CSCwk19536_ET
    Affected: 12.6.2_CSCwm96922_ET
    Affected: 12.6.2_Amq_OOS_ET
    Affected: 12.5(2)ET_CSCwi79933
    Affected: 12.6(2)_ET
    Affected: 12.6.2_CSCwn48501_ET
    Create a notification for this product.
    Cisco Cisco Unity Connection Affected: 12.5(1)
    Affected: 12.5(1)SU1
    Affected: 12.5(1)SU2
    Affected: 12.5(1)SU3
    Affected: 12.5(1)SU4
    Affected: 14
    Affected: 12.5(1)SU5
    Affected: 14SU1
    Affected: 12.5(1)SU6
    Affected: 14SU2
    Affected: 12.5(1)SU7
    Affected: 14SU3
    Affected: 12.5(1)SU8
    Affected: 14SU3a
    Affected: 12.5(1)SU8a
    Affected: 15
    Affected: 15SU1
    Affected: 14SU4
    Affected: 12.5(1)SU9
    Create a notification for this product.
    Cisco Cisco Virtualized Voice Browser Affected: 11.0(1)
    Affected: 11.6(1)_ES84
    Affected: 11.5(1)_ES54
    Affected: 11.5(1)_ES27
    Affected: 11.5(1)
    Affected: 11.5(1)ES36
    Affected: 12.0(1)_ES01
    Affected: 11.6(1)_ES85
    Affected: 12.5(1)_ES05
    Affected: 11.5(1)_ES32
    Affected: 11.6(1)_ES83
    Affected: 11.5(1)_ES29
    Affected: 12.0(1)_ES06
    Affected: 12.5(1)
    Affected: 12.0(1)_ES07
    Affected: 11.6(1)_ES80
    Affected: 12.0(1)_ES05
    Affected: 11.5(1)_ES36
    Affected: 11.5(1)_ES53
    Affected: 12.5(1)_ES08
    Affected: 11.5(1)ES43
    Affected: 12.0(1)_ES03
    Affected: 11.6(1)_ES86
    Affected: 12.0(1)_ES04
    Affected: 11.5(1)ES27
    Affected: 12.5(1)_ES03
    Affected: 11.6(1)_ES88
    Affected: 12.5(1)_ES06
    Affected: 11.6(1)_ES82
    Affected: 11.6(1)
    Affected: 11.5(1)ES29
    Affected: 12.5(1)_ES04
    Affected: 12.5(1)_ES07
    Affected: 11.6(1)_ES87
    Affected: 11.6(1)_ES81
    Affected: 12.0(1)
    Affected: 11.6(1)_ES22
    Affected: 11.5(1)_ES43
    Affected: 11.5(1)ES32
    Affected: 12.0(1)_ES02
    Affected: 12.5(1)_ES02
    Affected: 12.6(1)
    Affected: 12.5(1)_ES09
    Affected: 12.6(1)_ES01
    Affected: 12.0(1)_ES08
    Affected: 12.5(1)_ES10
    Affected: 12.6(1)_ES02
    Affected: 12.5(1)_ES11
    Affected: 12.5(1)_ES12
    Affected: 12.6(1)_ES03
    Affected: 12.5(1)_ES13
    Affected: 12.5(1)_ES14
    Affected: 12.6(1)_ES04
    Affected: 12.6(1)_ES05
    Affected: 12.5(1)_ES15
    Affected: 12.6(1)_ES06
    Affected: 12.6(1)_ET
    Affected: 12.5(1)_ES16
    Affected: 12.5(1)SU
    Affected: 12.5(1)_SU
    Affected: 12.5(1)_SU_ES01
    Affected: 12.6(1)_ES07
    Affected: 12.6(2)
    Affected: 12.5(1)_ES17
    Affected: 12.6(1)_ES08
    Affected: 12.6(1)_ES09
    Affected: 12.6(1)_ES10
    Affected: 12.5(1)_SU_ES02
    Affected: 12.6(2)_ES01
    Affected: 12.6(2)_ET01
    Affected: 12.5(2)_ET
    Affected: 12.6(2)_ES02
    Affected: 12.6(2)_ET_Streaming
    Affected: 12.6(2)ET_Transcribe
    Affected: 12.6(2)_ES03
    Affected: 12.6(2)ET_NuanceMix
    Affected: 12.6(2)ET_FileUpload
    Affected: 12.6(2)_ET02
    Affected: 12.6(2)_ES04
    Affected: 12.6.2ET_RTPfallback
    Affected: 12.6.2ET_CSCwf55306
    Affected: 12.6.2_ET_CSCwj36712
    Affected: 12.5.2 ET-CSCwj33374
    Affected: 12.5(1) SU ET
    Affected: 12.6(2)ET_CSCwj87296
    Affected: 12.6(2)_ES05
    Affected: 12.5.2_ET_CSCvz27014
    Affected: 12.6(2)_ET
    Affected: 12.6.2-ET
    Affected: 12.6(2)ET_CSCwk83135
    Affected: 12.6.2_ET_CX_ALAW
    Affected: 12.6.2-ET01-SSL
    Affected: 12.6(2)_ES06
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-20112",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-22T03:55:23.838603Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T18:28:03.732Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Emergency Responder",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1a)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU4"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU5"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU6"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8a"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8b"
                },
                {
                  "status": "affected",
                  "version": "14SU3a"
                },
                {
                  "status": "affected",
                  "version": "15"
                },
                {
                  "status": "affected",
                  "version": "15SU1"
                },
                {
                  "status": "affected",
                  "version": "15SU1a"
                },
                {
                  "status": "affected",
                  "version": "14SU4"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU9"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Finesse",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "11.0(1)ES_Rollback"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)FIPS"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES8"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES10"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES8"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES9"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES9"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES10"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES11"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES1"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES8"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES8"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES2"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES3"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES4"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES5"
                },
                {
                  "status": "affected",
                  "version": "12.5(2)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES6"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU ES1"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES7"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES7_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES8"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES9"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ES1"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES10"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU ES2"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)ES11"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ES2"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ES3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU ES3"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ES4"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ES6"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Prime Collaboration Deployment",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "10.5(3)"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.1(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "11.5(3)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(2)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.5(2)"
                },
                {
                  "status": "affected",
                  "version": "10.5(3)SU1"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                },
                {
                  "status": "affected",
                  "version": "15"
                },
                {
                  "status": "affected",
                  "version": "15SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU4"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco SocialMiner",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)ES01"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES04"
                },
                {
                  "status": "affected",
                  "version": "10.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES02"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES03"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Communications Manager",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU4"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU5"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU6"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7a"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8a"
                },
                {
                  "status": "affected",
                  "version": "15"
                },
                {
                  "status": "affected",
                  "version": "15SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU4"
                },
                {
                  "status": "affected",
                  "version": "14SU4a"
                },
                {
                  "status": "affected",
                  "version": "15SU1a"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU9"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Communications Manager IM and Presence Service",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU4"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU5"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU6"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                },
                {
                  "status": "affected",
                  "version": "14SU2a"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8"
                },
                {
                  "status": "affected",
                  "version": "15"
                },
                {
                  "status": "affected",
                  "version": "15SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU4"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU9"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Contact Center Express",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)"
                },
                {
                  "status": "affected",
                  "version": "10.0(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES01"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU02_ES03"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU02_ES04"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU02_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU01_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU01_ES03"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU02_ES01"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES07"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES08"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU01_ES01"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES04"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES03"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES06"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)ES01"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES03"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES01"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES05"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)ES02"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES04"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES03"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES02"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)ES01"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU3ES03"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)SU1ES03"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU3ES01"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)SU1ES10"
                },
                {
                  "status": "affected",
                  "version": "10.0(1)SU1ES04"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1ES03"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES02"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES01"
                },
                {
                  "status": "affected",
                  "version": "9.0(2)SU3ES04"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU2ES04"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)ES01"
                },
                {
                  "status": "affected",
                  "version": "10.6(1)SU3ES02"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1ES02"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1ES01"
                },
                {
                  "status": "affected",
                  "version": "8.5(1)SU4ES09"
                },
                {
                  "status": "affected",
                  "version": "8.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)SU1ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES03"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES04"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES05"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU03_ES06"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unified Intelligence Center",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(2)"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES05_ET"
                },
                {
                  "status": "affected",
                  "version": "11.0(3)"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_504_Issue_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.1_ExcelIssue_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_Permalink_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_CSCwk19536_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_CSCwm96922_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_Amq_OOS_ET"
                },
                {
                  "status": "affected",
                  "version": "12.5(2)ET_CSCwi79933"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_CSCwn48501_ET"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Unity Connection",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU4"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU5"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU6"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8"
                },
                {
                  "status": "affected",
                  "version": "14SU3a"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU8a"
                },
                {
                  "status": "affected",
                  "version": "15"
                },
                {
                  "status": "affected",
                  "version": "15SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU4"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU9"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "Cisco Virtualized Voice Browser",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES84"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES54"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES27"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES36"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES01"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES85"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES05"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES32"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES83"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES29"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES06"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES07"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES80"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES05"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES36"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES53"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES08"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES43"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES03"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES86"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES04"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES27"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES03"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES88"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES06"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES82"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES29"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES04"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES07"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES87"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES81"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)_ES22"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)_ES43"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)ES32"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES09"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES01"
                },
                {
                  "status": "affected",
                  "version": "12.0(1)_ES08"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES10"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES11"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES12"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES03"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES13"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES14"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES04"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES05"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES15"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES06"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ET"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES16"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU_ES01"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES07"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_ES17"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES08"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES09"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)_ES10"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)_SU_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES01"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ET01"
                },
                {
                  "status": "affected",
                  "version": "12.5(2)_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES02"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ET_Streaming"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ET_Transcribe"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES03"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ET_NuanceMix"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ET_FileUpload"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ET02"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES04"
                },
                {
                  "status": "affected",
                  "version": "12.6.2ET_RTPfallback"
                },
                {
                  "status": "affected",
                  "version": "12.6.2ET_CSCwf55306"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_ET_CSCwj36712"
                },
                {
                  "status": "affected",
                  "version": "12.5.2 ET-CSCwj33374"
                },
                {
                  "status": "affected",
                  "version": "12.5(1) SU ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ET_CSCwj87296"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES05"
                },
                {
                  "status": "affected",
                  "version": "12.5.2_ET_CSCvz27014"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ET"
                },
                {
                  "status": "affected",
                  "version": "12.6.2-ET"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)ET_CSCwk83135"
                },
                {
                  "status": "affected",
                  "version": "12.6.2_ET_CX_ALAW"
                },
                {
                  "status": "affected",
                  "version": "12.6.2-ET01-SSL"
                },
                {
                  "status": "affected",
                  "version": "12.6(2)_ES06"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileges to root on an affected device.\r\n\r\nThis vulnerability is due to excessive permissions that have been assigned to system commands.\u0026nbsp;An attacker could exploit this vulnerability by executing crafted commands on the underlying operating system. A successful exploit could allow the attacker to escape the restricted shell and gain root privileges on the underlying operating system of an affected device. To successfully exploit this vulnerability, an attacker would need administrative access to the ESXi hypervisor."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-268",
                  "description": "Privilege Chaining",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-05-21T16:19:24.562Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-cucm-kkhZbHR5",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-kkhZbHR5"
            }
          ],
          "source": {
            "advisory": "cisco-sa-cucm-kkhZbHR5",
            "defects": [
              "CSCwi52980"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Unified Communications Products Privilege Escalation Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2025-20112",
        "datePublished": "2025-05-21T16:19:24.562Z",
        "dateReserved": "2024-10-10T19:15:13.210Z",
        "dateUpdated": "2026-02-26T18:28:03.732Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2023-20060 (GCVE-0-2023-20060)

    Vulnerability from cvelistv5 – Published: 2024-11-15 15:20 – Updated: 2024-11-15 15:38
    VLAI
    Title
    Cisco Prime Collaboration Deployment Cross-Site Scripting Vulnerability
    Summary
    A vulnerability in the web-based management interface of Cisco Prime Collaboration Deployment could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. Cisco plans to release software updates that address this vulnerability. There are no workarounds that address this vulnerability.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Prime Collaboration Deployment Affected: 11.5(1)
    Affected: 11.0(1a)
    Affected: 11.5(1)SU1
    Affected: 10.5(3)
    Affected: 12.6(1)
    Affected: 11.0(1)
    Affected: 11.6(2)
    Affected: 12.1(1)
    Affected: 12.0(1a)
    Affected: 11.5(3)
    Affected: 10.5(1)
    Affected: 12.5(1)
    Affected: 11.5(2)
    Affected: 11.6(1)
    Affected: 10.5(2)
    Affected: 10.5(3)SU1
    Affected: 14
    Affected: 14SU1
    Affected: 14SU2
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20060",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-15T15:37:46.128428Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-15T15:38:06.025Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "Cisco Prime Collaboration Deployment",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "11.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "11.5(1)SU1"
                },
                {
                  "status": "affected",
                  "version": "10.5(3)"
                },
                {
                  "status": "affected",
                  "version": "12.6(1)"
                },
                {
                  "status": "affected",
                  "version": "11.0(1)"
                },
                {
                  "status": "affected",
                  "version": "11.6(2)"
                },
                {
                  "status": "affected",
                  "version": "12.1(1)"
                },
                {
                  "status": "affected",
                  "version": "12.0(1a)"
                },
                {
                  "status": "affected",
                  "version": "11.5(3)"
                },
                {
                  "status": "affected",
                  "version": "10.5(1)"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)"
                },
                {
                  "status": "affected",
                  "version": "11.5(2)"
                },
                {
                  "status": "affected",
                  "version": "11.6(1)"
                },
                {
                  "status": "affected",
                  "version": "10.5(2)"
                },
                {
                  "status": "affected",
                  "version": "10.5(3)SU1"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "14SU1"
                },
                {
                  "status": "affected",
                  "version": "14SU2"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the web-based management interface of Cisco Prime Collaboration Deployment could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack against a user of the interface.\r\n\r\nThis vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.\r\nCisco plans to release software updates that address this vulnerability. There are no workarounds that address this vulnerability."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-11-15T15:20:01.451Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-pcd-xss-jDXpjm7",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pcd-xss-jDXpjm7"
            }
          ],
          "source": {
            "advisory": "cisco-sa-pcd-xss-jDXpjm7",
            "defects": [
              "CSCwc83342"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Cisco Prime Collaboration Deployment Cross-Site Scripting Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20060",
        "datePublished": "2024-11-15T15:20:01.451Z",
        "dateReserved": "2022-10-27T18:47:50.320Z",
        "dateUpdated": "2024-11-15T15:38:06.025Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20259 (GCVE-0-2023-20259)

    Vulnerability from cvelistv5 – Published: 2023-10-04 16:13 – Updated: 2024-08-02 09:05
    VLAI
    Summary
    A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow an unauthenticated, remote attacker to cause high CPU utilization, which could impact access to the web-based management interface and cause delays with call processing. This API is not used for device management and is unlikely to be used in normal operations of the device. This vulnerability is due to improper API authentication and incomplete validation of the API request. An attacker could exploit this vulnerability by sending a crafted HTTP request to a specific API on the device. A successful exploit could allow the attacker to cause a denial of service (DoS) condition due to high CPU utilization, which could negatively impact user traffic and management access. When the attack stops, the device will recover without manual intervention.
    CWE
    • CWE-400 - Uncontrolled Resource Consumption
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:05:36.904Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-cucm-apidos-PGsDcdNF",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-apidos-PGsDcdNF"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Emergency Responder",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "14"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                }
              ]
            },
            {
              "product": "Cisco Unity Connection",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "14SU3"
                }
              ]
            },
            {
              "product": "Cisco Unified Communications Manager",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "12.5(1)SU7a"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                }
              ]
            },
            {
              "product": "Cisco Unified Communications Manager IM and Presence Service",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.5(1)SU7"
                },
                {
                  "status": "affected",
                  "version": "14SU3"
                }
              ]
            },
            {
              "product": "Cisco Prime Collaboration Deployment",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "14SU3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow an unauthenticated, remote attacker to cause high CPU utilization, which could impact access to the web-based management interface and cause delays with call processing. This API is not used for device management and is unlikely to be used in normal operations of the device.\r\n\r This vulnerability is due to improper API authentication and incomplete validation of the API request. An attacker could exploit this vulnerability by sending a crafted HTTP request to a specific API on the device. A successful exploit could allow the attacker to cause a denial of service (DoS) condition due to high CPU utilization, which could negatively impact user traffic and management access. When the attack stops, the device will recover without manual intervention."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "Uncontrolled Resource Consumption",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-25T16:58:34.054Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-cucm-apidos-PGsDcdNF",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-apidos-PGsDcdNF"
            }
          ],
          "source": {
            "advisory": "cisco-sa-cucm-apidos-PGsDcdNF",
            "defects": [
              "CSCwf44755",
              "CSCwf62074",
              "CSCwf62081",
              "CSCwf62094",
              "CSCwf62080"
            ],
            "discovery": "INTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20259",
        "datePublished": "2023-10-04T16:13:30.662Z",
        "dateReserved": "2022-10-27T18:47:50.372Z",
        "dateUpdated": "2024-08-02T09:05:36.904Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }