cbcvebase.
CVE-2018-0403
published 2018-07-18

CVE-2018-0403: Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote…

PriorityP261critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
2.66%
83.8th percentile
Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to retrieve a cleartext password. Cisco Bug IDs: CSCvg71040.

Affected

3 ranges
VendorProductVersion rangeFixed in
ciscounified_contact_center_express
ciscounified_contact_center_express
ciscounified_ip_interactive_voice_response

Detection & IOCsextracted from sources · hover to see the quote

  • Target application is the web-based management interface of Cisco Unified Contact Center Express (Unified CCX); monitor for unauthenticated requests to this interface that attempt to retrieve credentials or inject scripts.
  • Track Cisco Bug IDs CSCvg70904, CSCvg70921, CSCvg70967, and CSCvg71040 for patch status and vendor-released indicators associated with this CVE cluster.
  • ·No workarounds are available for these vulnerabilities; patching is the only mitigation.
  • ·The vulnerability covers multiple weakness types (XSS, CSRF, cleartext password disclosure), so detection logic should account for all three attack vectors against the Unified CCX web management interface.

CVSS provenance

nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_cisco6.3MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.