CyberSec.Space Logo
Back to CVE Browser

CVE-2018-0402

HIGH
8.8
CVSS Severity Score
EPSS Score0.0990%
EPSS Percentile27.16th
PublishedJul 18, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack. Cisco Bug IDs: CSCvg70921.

Affected Platforms (CPE)

πŸ“¦
Cisco

Unified Contact Center Express

= 11.5\(1\)
πŸ“¦
Cisco

Unified Ip Interactive Voice Response

= 11.5\(1\)

References & Advisories

πŸ”— http://www.securitytracker.com/id/1041352
πŸ”— https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-uccx
πŸ”— http://www.securitytracker.com/id/1041352
πŸ”— https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-uccx

Related Vulnerabilities

CVE-2020-32809.8

A vulnerability in the Java Remote Management Interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unaut...

CVE-2018-04039.8

Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow a...

CVE-2009-20479.0

Directory traversal vulnerability in the Administration interface in Cisco Customer Response Solutions (CRS) before 7.0(1) SR2 in ...

CVE-2016-64278.8

Cross-site request forgery (CSRF) vulnerability in Cisco Unified Intelligence Center (CUIC) 8.5.4 through 9.1(1), as used in Unifi...