CVE-2019-1888: Cisco Unified Contact Center Express Privilege Escalation Vulnerability
First published: Wed Sep 23 2020(Updated: )
A vulnerability in the Administration Web Interface of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote attacker to upload arbitrary files and execute commands on the underlying operating system. To exploit this vulnerability, an attacker needs valid Administrator credentials. The vulnerability is due to insufficient restrictions for the content uploaded to an affected system. An attacker could exploit this vulnerability by uploading arbitrary files containing operating system commands that will be executed by an affected system. A successful exploit could allow the attacker to execute arbitrary commands with the privileges of the web interface and then elevate their privileges to root.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Unified Contact Center Express | =11.6\(1\) | |
| Cisco Unified Contact Center Express | =11.6\(2\) | |
| Cisco Unified Contact Center Express | =12.0\(1\) | |
| Cisco Unified IP Interactive Voice Response | =11.6\(1\) | |
| Cisco Unified IP Interactive Voice Response | =11.6\(2\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-1888?
CVE-2019-1888 is a vulnerability in the Administration Web Interface of Cisco Unified Contact Center Express (Unified CCX) that allows an authenticated attacker to upload arbitrary files and execute commands on the underlying operating system.
How severe is CVE-2019-1888?
CVE-2019-1888 has a severity rating of 7.2, which is classified as critical.
Which software versions are affected by CVE-2019-1888?
CVE-2019-1888 affects Cisco Unified Contact Center Express versions 11.6(1), 11.6(2), and 12.0(1), as well as Cisco Unified IP Interactive Voice Response versions 11.6(1) and 11.6(2).
How can an attacker exploit CVE-2019-1888?
To exploit CVE-2019-1888, the attacker needs valid Administrator credentials and can then upload arbitrary files and execute commands on the underlying operating system through the Administration Web Interface.
Where can I find more information about CVE-2019-1888?
You can find more information about CVE-2019-1888 in Cisco's security advisory at the following link: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uccx-privesc-Zd7bvwyf
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/cisco
- canonical/cisco unified contact center express
- version/cisco unified contact center express/11.6\(1\)
- version/cisco unified contact center express/11.6\(2\)
- version/cisco unified contact center express/12.0\(1\)
- canonical/cisco unified ip interactive voice response
- version/cisco unified ip interactive voice response/11.6\(1\)
- version/cisco unified ip interactive voice response/11.6\(2\)