Vulnerability Description
Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote attacker to collect sensitive information or perform a server-side request forgery (SSRF) attack on an affected system. Cisco plans to release software updates that address these vulnerabilities.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Packaged Contact Center Enterprise | - |
| Cisco | Unified Contact Center Enterprise | - |
| Cisco | Unified Contact Center Express | - |
| Cisco | Unified Intelligence Center | < 12.6\(2\) |
Related Weaknesses (CWE)
References
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/ciVendor Advisory
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/ciVendor Advisory
FAQ
What is CVE-2023-20061?
CVE-2023-20061 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote attacker to collect sensitive information or perform a server-side request forgery (SSRF) attack on a...
How severe is CVE-2023-20061?
CVE-2023-20061 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-20061?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Packaged Contact Center Enterprise, Cisco Unified Contact Center Enterprise, Cisco Unified Contact Center Express, Cisco Unified Intelligence Center.