CVE-2018-0403
published 2018-07-18CVE-2018-0403: Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote…
PriorityP261critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
2.66%
83.8th percentile
Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to retrieve a cleartext password. Cisco Bug IDs: CSCvg71040.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | unified_contact_center_express | — | — |
| cisco | unified_contact_center_express | — | — |
| cisco | unified_ip_interactive_voice_response | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Target application is the web-based management interface of Cisco Unified Contact Center Express (Unified CCX); monitor for unauthenticated requests to this interface that attempt to retrieve credentials or inject scripts. ↗
- →Track Cisco Bug IDs CSCvg70904, CSCvg70921, CSCvg70967, and CSCvg71040 for patch status and vendor-released indicators associated with this CVE cluster. ↗
- ·No workarounds are available for these vulnerabilities; patching is the only mitigation. ↗
- ·The vulnerability covers multiple weakness types (XSS, CSRF, cleartext password disclosure), so detection logic should account for all three attack vectors against the Unified CCX web management interface. ↗
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_cisco6.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Multiple Vulnerabilities in Cisco Unified Contact Center Express
vendor_cisco·2018-07-18·CVSS 6.3
CVE-2018-0400 [MEDIUM] CWE-19 Multiple Vulnerabilities in Cisco Unified Contact Center Express
Multiple Vulnerabilities in Cisco Unified Contact Center Express
Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface, conduct a cross-site request forgery (CSRF) attack, or retrieve a cleartext password.
For more information about these vulnerabilities, see the Details section of this advisory.
There are no workarounds that address these vulnerabilities.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-uccx
Cisco
Multiple Vulnerabilities in Cisco Unified Contact Center Express
vendor_cisco·CVSS 3.0
CVE-2018-0403 Multiple Vulnerabilities in Cisco Unified Contact Center Express
CVE-2018-0403: Multiple Vulnerabilities in Cisco Unified Contact Center Express
Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface, conduct a cross-site request forgery (CSRF) attack, or retrieve a cleartext password. For more information about these vulnerabilities, see the
CVSS: 3.0
CWE: CWE-19, CWE-352, CWE-79, CWE-19, CWE-352, CWE-79
Bug IDs: CSCvg70904, CSCvg70921, CSCvg70967, CSCvg70904, CSCvg70921
GHSA
GHSA-cvfr-4cv2-rxvj: Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, r
ghsa_unreviewed·2022-05-13
CVE-2018-0403 [CRITICAL] CWE-918 GHSA-cvfr-4cv2-rxvj: Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, r
Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to retrieve a cleartext password. Cisco Bug IDs: CSCvg71040.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2018-07-18
Published