Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-20062


Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote attacker to collect sensitive information or perform a server-side request forgery (SSRF) attack on an affected system. Cisco plans to release software updates that address these vulnerabilities.


Published

2023-03-03T16:15:10.093

Last Modified

2024-11-21T07:40:27.790

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-200
  • Type: Primary
    CWE-918

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application cisco packaged_contact_center_enterprise - Yes
Application cisco unified_contact_center_enterprise - Yes
Application cisco unified_contact_center_express - Yes
Application cisco unified_intelligence_center < 12.6\(2\) Yes

References