CVE-2020-3402

Name of the Vulnerable Software and Affected Versions Cisco Unified Customer Voice Portal (affected versions not specified)

Description A vulnerability in the Java Remote Method Invocation (RMI) interface could allow an unauthenticated, remote attacker to access sensitive information on an affected device. The issue exists due to a lack of proper authentication for certain RMI listeners. An attacker could exploit this by sending a crafted request to the affected listener, potentially allowing access to sensitive information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.