CSOonline

Cisco patches critical vulnerability in Unified Communications products

Cisco fixed a critical flaw this week that affects multiple Unified Communications and Contact Center Solutions products and could be exploited remotely by unauthenticated attackers to execute ...
Bleeping Computer

Cisco warns of critical RCE flaw in communications software

Cisco is warning that several of its Unified Communications Manager (CM) and Contact Center Solutions products are vulnerable to a critical severity remote code execution security issue. Cisco's ...
Dark Reading

Critical Cisco Unified Communications RCE Bug Allows Root Access

A critical security vulnerability in Cisco Unified Communications and Contact Center Solutions (UC/CC) could allow unauthenticated remote code execution (RCE). The bug (CVE-2024-20253, 9.9 CVSS) ...
Bleeping Computer

Cisco warns that Unified CM has hardcoded root SSH credentials

Cisco has removed a backdoor account from its Unified Communications Manager (Unified CM), which would have allowed remote attackers to log in to unpatched devices with root privileges. Cisco Unified ...
CSOonline

Hardcoded root credentials in Cisco Unified CM trigger max-severity alert

Static root credentials left in limited Unified Communications Manager builds could let attackers gain full control over enterprise communications systems. Cisco (Nasdaq:CSCO) has patched a max ...