Critical Cisco UCCX Flaw Lets Attackers Run Commands as Root

Critical Cisco UCCX flaw lets attackers run commands as root

Cisco has released security updates to patch a critical vulnerability in the Unified Contact Center Express (UCCX) software, which could enable attackers to execute commands with root privileges.

Cisco ISE Bug Exposes Networks to Remote Restart Attacks

A recently disclosed vulnerability in Cisco’s Identity Services Engine (ISE) highlights the ongoing challenges organizations face in securing network authentication and access control systems. The flaw allows remote, unauthenticated attackers to cause denial-of-service (DoS) conditions by forcing unexpected system restarts through specially crafted RADIUS requests. The Bug Behind the Breakdown The vulnerability (CVE-2024-20343) stems from a logi…

Cisco Warns Of Critical Unified CCX Flaws CVE-2025-20354 - Cybernoz - Cybersecurity News

Cisco has issued an urgent security advisory detailing two critical vulnerabilities affecting its Unified Contact Center Express (Unified CCX) platform. The flaws, identified as CVE-2025-20354 and CVE-2025-20358, could allow unauthenticated remote attackers to execute arbitrary code, bypass authentication, and potentially gain root-level access to affected systems.  The vulnerabilities were disclosed in the advisory cisco-sa-cc-unauth-rce-QeN8h7…

Cisco Warns Of Critical Unified CCX Flaws CVE-2025-20354

Cisco has issued an urgent security advisory detailing two critical vulnerabilities affecting its Unified Contact Center Express (Unified CCX) platform. The flaws, identified as CVE-2025-20354 and CVE-2025-20358, could allow unauthenticated remote attackers to execute arbitrary code, bypass authentication, and potentially gain root-level access to affected systems.  The vulnerabilities were disclosed in the advisory cisco-sa-cc-unauth-rce-QeN8h7…

Cisco fixes critical flaws in Unified Contact Center Express

Cisco released patches for two critical vulnerabilities in its Unified Contact Center Express (CCX) that could allow attackers to bypass authentication and execute commands as root on the underlying system. The company also warned today about a new attack variation targeting two previously patched vulnerabilities in its Secure Firewall Adaptive Security Appliance (ASA) and Secure Firewall Threat Defense (FTD) software. The flaws were exploited i…