Cisco Unified Communications: RCE via Improper Data Reads
CVE-2024-20253 Published on January 26, 2024

A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. This vulnerability is due to the improper processing of user-provided data that is being read into memory. An attacker could exploit this vulnerability by sending a crafted message to a listening port of an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with the privileges of the web services user. With access to the underlying operating system, the attacker could also establish root access on the affected device.

NVD

Vulnerability Analysis

CVE-2024-20253 can be exploited with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a small impact on confidentiality and integrity, and a high impact on availability.

Attack Vector:

NETWORK

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

NONE

Scope:

CHANGED

Confidentiality Impact:

LOW

Integrity Impact:

LOW

Availability Impact:

HIGH

Weakness Type

What is a Marshaling, Unmarshaling Vulnerability?

The application deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

CVE-2024-20253 has been classified to as a Marshaling, Unmarshaling vulnerability or weakness.

Products Associated with CVE-2024-20253

Want to know whenever a new CVE is published for Cisco products? stack.watch will email you.

Cisco Unified Communications Manager

Cisco Unified Communications Manager Im Presence Service

Cisco Unity Connection

Cisco Unified Contact Center Express

Cisco Virtualized Voice Browser

Affected Versions

Cisco Unified Contact Center Enterprise:

Version N/A is affected.

Cisco Unity Connection:

Version 12.0(1)SU1 is affected.
Version 12.0(1)SU2 is affected.
Version 12.0(1)SU3 is affected.
Version 12.0(1)SU4 is affected.
Version 12.0(1)SU5 is affected.
Version 12.5(1) is affected.
Version 12.5(1)SU1 is affected.
Version 12.5(1)SU2 is affected.
Version 12.5(1)SU3 is affected.
Version 12.5(1)SU4 is affected.
Version 12.5(1)SU5 is affected.
Version 12.5(1)SU6 is affected.
Version 12.5(1)SU7 is affected.
Version 14 is affected.
Version 14SU1 is affected.
Version 14SU2 is affected.

Cisco Unified Communications Manager:

Version 12.0(1)SU1 is affected.
Version 12.0(1)SU2 is affected.
Version 12.0(1)SU3 is affected.
Version 12.0(1)SU4 is affected.
Version 12.0(1)SU5 is affected.
Version 12.5(1) is affected.
Version 12.5(1)SU1 is affected.
Version 12.5(1)SU2 is affected.
Version 12.5(1)SU3 is affected.
Version 12.5(1)SU4 is affected.
Version 12.5(1)SU5 is affected.
Version 12.5(1)SU6 is affected.
Version 12.5(1)SU7 is affected.
Version 12.5(1)SU7a is affected.
Version 14 is affected.
Version 14SU1 is affected.
Version 14SU2 is affected.

Cisco Unified Contact Center Express:

Version 8.5(1) is affected.
Version 9.0(2)SU3ES04 is affected.
Version 10.0(1)SU1 is affected.
Version 10.0(1)SU1ES04 is affected.
Version 10.5(1) is affected.
Version 10.5(1)SU1 is affected.
Version 10.5(1)SU1ES10 is affected.
Version 10.6(1) is affected.
Version 10.6(1)SU1 is affected.
Version 10.6(1)SU3 is affected.
Version 10.6(1)SU2 is affected.
Version 10.6(1)SU3ES03 is affected.
Version 10.6(1)SU2ES04 is affected.
Version 10.6(1)SU3ES02 is affected.
Version 10.6(1)SU3ES01 is affected.
Version 11.0(1)SU1 is affected.
Version 11.0(1)SU1ES03 is affected.
Version 11.0(1)SU1ES02 is affected.
Version 11.5(1)SU1 is affected.
Version 11.5(1)SU1ES02 is affected.
Version 11.5(1)SU1ES01 is affected.
Version 11.5(1)SU1ES03 is affected.
Version 11.5(1)ES01 is affected.
Version 12.0(1) is affected.
Version 12.0(1)ES01 is affected.
Version 12.0(1)ES03 is affected.
Version 12.0(1)ES04 is affected.
Version 12.0(1)ES02 is affected.
Version 12.5(1) is affected.
Version 12.5(1)SU1 is affected.
Version 12.5(1)SU2 is affected.
Version 12.5(1)SU3 is affected.
Version 12.5(1)_SU01_ES03 is affected.
Version 12.5(1)ES03 is affected.
Version 12.5(1)_SU01_ES01 is affected.
Version 12.5(1)_SU02_ES02 is affected.
Version 12.5(1)_SU01_ES02 is affected.
Version 12.5(1)_SU02_ES03 is affected.
Version 12.5(1)ES01 is affected.
Version 12.5(1)_SU02_ES01 is affected.
Version 12.5(1)ES02 is affected.
Version 12.5(1)_SU03_ES01 is affected.
Version 12.5(1)_SU02_ES04 is affected.
Version 12.5(1)_SU03_ES02 is affected.
Version 12.5(1)_SU03_ES03 is affected.
Version 12.5(1)_SU03_ES04 is affected.
Version 11.6(1) is affected.
Version 11.6(2) is affected.
Version 11.6(1)ES01 is affected.
Version 11.6(2)ES06 is affected.
Version 11.6(1)ES02 is affected.
Version 11.6(2)ES01 is affected.
Version 11.6(2)ES03 is affected.
Version 11.6(2)ES07 is affected.
Version 11.6(2)ES08 is affected.
Version 11.6(2)ES02 is affected.
Version 11.6(2)ES05 is affected.
Version 11.6(2)ES04 is affected.

Cisco Unified Communications Manager IM and Presence Service:

Version 10.5(1) is affected.
Version 10.5(2) is affected.
Version 10.5(2a) is affected.
Version 10.5(2b) is affected.
Version 10.5(2)SU3 is affected.
Version 10.5(2)SU2a is affected.
Version 10.5(2)SU4a is affected.
Version 10.5(2)SU4 is affected.
Version 10.5(1)SU3 is affected.
Version 10.5(1)SU1 is affected.
Version 10.5(2)SU1 is affected.
Version 10.5(2)SU2 is affected.
Version 10.5(1)SU2 is affected.
Version 11.5(1) is affected.
Version 11.5(1)SU1 is affected.
Version 11.5(1)SU2 is affected.
Version 11.5(1)SU3 is affected.
Version 11.5(1)SU3a is affected.
Version 11.5(1)SU4 is affected.
Version 11.5(1)SU5 is affected.
Version 11.5(1)SU5a is affected.
Version 11.5(1)SU6 is affected.
Version 11.5(1)SU7 is affected.
Version 11.5(1)SU8 is affected.
Version 11.5(1)SU9 is affected.
Version 11.5(1)SU10 is affected.
Version 11.5(1)SU11 is affected.
Version 11.0(1) is affected.
Version 11.0(1)SU1 is affected.
Version 12.5(1) is affected.
Version 12.5(1)SU1 is affected.
Version 12.5(1)SU2 is affected.
Version 12.5(1)SU3 is affected.
Version 12.5(1)SU4 is affected.
Version 12.5(1)SU5 is affected.
Version 12.5(1)SU6 is affected.
Version 12.5(1)SU7 is affected.
Version 14 is affected.
Version 14SU1 is affected.
Version 14SU2 is affected.
Version 14SU2a is affected.
Version 10.0(1) is affected.
Version 10.0(1)SU1 is affected.
Version 10.0(1)SU2 is affected.

Cisco Virtualized Voice Browser:

Version 11.0(1) is affected.
Version 11.5(1) is affected.
Version 11.5(1)ES29 is affected.
Version 11.5(1)ES32 is affected.
Version 11.5(1)_ES43 is affected.
Version 11.5(1)_ES54 is affected.
Version 11.5(1)_ES27 is affected.
Version 11.5(1)ES36 is affected.
Version 11.5(1)_ES32 is affected.
Version 11.5(1)_ES29 is affected.
Version 11.5(1)_ES36 is affected.
Version 11.5(1)ES43 is affected.
Version 11.5(1)_ES53 is affected.
Version 11.5(1)ES27 is affected.
Version 11.6(1) is affected.
Version 11.6(1)_ES82 is affected.
Version 11.6(1)_ES22 is affected.
Version 11.6(1)_ES81 is affected.
Version 11.6(1)_ES87 is affected.
Version 11.6(1)_ES84 is affected.
Version 11.6(1)_ES85 is affected.
Version 11.6(1)_ES83 is affected.
Version 11.6(1)_ES80 is affected.
Version 11.6(1)_ES86 is affected.
Version 11.6(1)_ES88 is affected.
Version 12.5(1)_ES04 is affected.
Version 12.5(1)_ES07 is affected.
Version 12.5(1)_ES02 is affected.
Version 12.5(1) is affected.
Version 12.5(1)_ES08 is affected.
Version 12.5(1)_ES03 is affected.
Version 12.5(1)_ES06 is affected.
Version 12.5(1)_ES09 is affected.
Version 12.5(1)_ES14 is affected.
Version 12.5(1)SU is affected.
Version 12.5(1)_ES15 is affected.
Version 12.5(1)_SU is affected.
Version 12.5(1)_SU_ES01 is affected.
Version 12.5(1)_ES11 is affected.
Version 12.5(1)_ES12 is affected.
Version 12.5(2)_ET is affected.
Version 12.5(1)_SU_ES02 is affected.
Version 12.5(1)_ES10 is affected.
Version 12.0(1) is affected.
Version 12.0(1)_ES02 is affected.
Version 12.0(1)_ES01 is affected.
Version 12.0(1)_ES06 is affected.
Version 12.0(1)_ES07 is affected.
Version 12.0(1)_ES05 is affected.
Version 12.0(1)_ES04 is affected.
Version 12.0(1)_ES03 is affected.
Version 12.0(1)_ES08 is affected.
Version 12.6(1) is affected.
Version 12.6(1)_ES04 is affected.
Version 12.6(1)_ES03 is affected.
Version 12.6(1)_ES09 is affected.
Version 12.6(1)_ES06 is affected.
Version 12.6(1)_ES08 is affected.
Version 12.6(1)_ES05 is affected.
Version 12.6(2)_ES03 is affected.
Version 12.6(1)_ES02 is affected.
Version 12.6(1)_ES01 is affected.
Version 12.6(2) is affected.
Version 12.6(2)_ET01 is affected.
Version 12.6(2)_ES02 is affected.
Version 12.6(2)_ES01 is affected.
Version 12.6(1)_ES07 is affected.

Cisco Packaged Contact Center Enterprise:

Version 10.5(1) is affected.
Version 10.5(2) is affected.
Version 10.5(1)_ES7 is affected.
Version 10.5(2)_ES8 is affected.
Version 11.0(1) is affected.
Version 11.0(2) is affected.
Version 11.5(1) is affected.
Version 11.6(1) is affected.
Version 11.6(2) is affected.
Version 12.0(1) is affected.
Version 12.5(1) is affected.
Version 12.5(2) is affected.
Version 12.6(1) is affected.
Version 12.6(2) is affected.

Cisco Unified Communications Manager / Cisco Unity Connection:

Version 10.5(2)SU10 is affected.
Version 10.5(1) is affected.
Version 10.5(1)SU1 is affected.
Version 10.5(1)SU1a is affected.
Version 10.5(2) is affected.
Version 10.5(2)SU1 is affected.
Version 10.5(2)SU2 is affected.
Version 10.5(2)SU3 is affected.
Version 10.5(2)SU4 is affected.
Version 10.5(2)SU5 is affected.
Version 10.5(2)SU6 is affected.
Version 10.5(2)SU7 is affected.
Version 10.5(2)SU8 is affected.
Version 10.5(2)SU9 is affected.
Version 10.5(2)SU2a is affected.
Version 10.5(2)SU3a is affected.
Version 10.5(2)SU4a is affected.
Version 10.5(2)SU6a is affected.
Version 11.0(1) is affected.
Version 11.0(1a) is affected.
Version 11.0(1a)SU1 is affected.
Version 11.0(1a)SU2 is affected.
Version 11.0(1a)SU3 is affected.
Version 11.0(1a)SU3a is affected.
Version 11.0(1a)SU4 is affected.
Version 11.0.1 is affected.
Version 11.0.2 is affected.
Version 11.0.5 is affected.
Version 11.5(1) is affected.
Version 11.5(1)SU1 is affected.
Version 11.5(1)SU2 is affected.
Version 11.5(1)SU3 is affected.
Version 11.5(1)SU3a is affected.
Version 11.5(1)SU3b is affected.
Version 11.5(1)SU4 is affected.
Version 11.5(1)SU5 is affected.
Version 11.5(1)SU6 is affected.
Version 11.5(1)SU7 is affected.
Version 11.5(1)SU8 is affected.
Version 11.5(1)SU9 is affected.
Version 11.5(1)SU10 is affected.
Version 11.5(1)SU11 is affected.
Version 10.0(1)SU2 is affected.
Version 10.0(1) is affected.
Version 10.0(1)SU1 is affected.

Exploit Probability

EPSS

2.93%

Percentile

86.18%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.