CVE-2022-20658

Name of the Vulnerable Software and Affected Versions Cisco Unified Contact Center Management Portal (Unified CCMP) versions prior to 11.6.1 ES17 Cisco Unified Contact Center Management Portal (Unified CCMP) versions prior to 12.0.1 ES5 Cisco Unified Contact Center Management Portal (Unified CCMP) versions prior to 12.5.1 ES5 Cisco Unified Contact Center Domain Manager (Unified CCDM) versions prior to 11.6.1 ES17 Cisco Unified Contact Center Domain Manager (Unified CCDM) versions prior to 12.0.1 ES5 Cisco Unified Contact Center Domain Manager (Unified CCDM) versions prior to 12.5.1 ES5

Description A vulnerability in the web-based management interface of Cisco Unified Contact Center Management Portal (Unified CCMP) and Cisco Unified Contact Center Domain Manager (Unified CCDM) could allow an authenticated, remote attacker to elevate their privileges to Administrator. This vulnerability is due to the lack of server-side validation of user permissions. An attacker could exploit this vulnerability by submitting a crafted HTTP request to a vulnerable system. A successful exploit could allow the attacker to create Administrator accounts, which would grant access to and modification of telephony and user resources across all the Unified platforms associated with the vulnerable Cisco Unified CCMP.

Recommendations For versions prior to 11.6.1 ES17, update to version 11.6.1 ES17 or later. For versions prior to 12.0.1 ES5, update to version 12.0.1 ES5 or later. For versions prior to 12.5.1 ES5, update to version 12.5.1 ES5 or later. As a temporary workaround, consider restricting access to the vulnerable web-based management interface until a patch is applied. Avoid using the vulnerable interface to create new Administrator accounts until the issue is resolved.