Cisco releases Security Updates to fix critial flaws in multiple products
On February 21, Cisco released the security update to address critical vulnerabilities that exist in Cisco Unified Communications Domain Manager, Cisco Elastic Services Controller Service Portal, Cisco Elastic Services Controller Service Portal, and Cisco Unified Customer Voice Portal Interactive Voice Response Connection. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
- Cisco Unified Communications Domain Manager Remote Code Execution Vulnerability
A vulnerability in Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to bypass security protections, gain elevated privileges, and execute arbitrary code.The vulnerability is due to insecure key generation during application configuration. An attacker could exploit this vulnerability by using a known insecure key value to bypass security protections by sending arbitrary requests using the insecure key to a targeted application. An exploit could allow the attacker to execute arbitrary code.
Affected products
Cisco Unified Communications Domain Manager releases prior to 11.5(2).
Solutions
Download the patch here - Cisco Elastic Services Controller Service Portal Authentication Bypass VulnerabilityA vulnerability in the authentication functionality of the web-based service portal of Cisco Elastic Services Controller Software could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrator privileges on an affected system.
The vulnerability is due to improper security restrictions that are imposed by the web-based service portal of the affected software. An attacker could exploit this vulnerability by submitting an empty password value to an affected portal when prompted to enter an administrative password for the portal. A successful exploit could allow the attacker to bypass authentication and gain administrator privileges for the web-based service portal of the affected software.
Affected products
Cisco Elastic Services Controller Software Release 3.0.0
Solutions
Download the patch here - Cisco Elastic Services Controller Service Portal Unauthorized Access Vulnerability
A vulnerability in the use of JSON web tokens by the web-based service portal of Cisco Elastic Services Controller Software could allow an unauthenticated, remote attacker to gain administrative access to an affected system.The vulnerability is due to the presence of static default credentials for the web-based service portal of the affected software. An attacker could exploit this vulnerability by extracting the credentials from an image of the affected software and using those credentials to generate a valid administrative session token for the web-based service portal of any other installation of the affected software. A successful exploit could allow the attacker to gain administrative access to the web-based service portal of an affected system.
Affected products
Cisco Elastic Services Controller Software Release 3.0.0
Solutions
Download the patch here
- Cisco Unified Customer Voice Portal Interactive Voice Response Connection Denial of Service Vulnerability
A vulnerability in the Interactive Voice Response (IVR) management connection interface for Cisco Unified Customer Voice Portal (CVP) could allow an unauthenticated, remote attacker to cause the IVR connection to disconnect, creating a system-wide denial of service (DoS) condition.The vulnerability is due to improper handling of a TCP connection request when the IVR connection is already established. An attacker could exploit this vulnerability by initiating a crafted connection to the IP address of the targeted CVP device. An exploit could allow the attacker to disconnect the IVR to CVP connection, creating a DoS condition that prevents the CVP from accepting new, incoming calls while the IVR automatically attempts to re-establish the connection to the CVP.
Affected products
Cisco Unified Customer Voice Portal (CVP) Software Release 11.5(1).Solutions
Solutions
Download the patch here
