Vulnerability Overview
Cisco has officially reported a high-risk vulnerability affecting a wide array of telecommunications and voice management products. This flaw enables an unauthenticated remote attacker to gain administrative control by executing system-level commands on vulnerable hosts.
Affected Products:
- Cisco Unified Communications Manager (CUCM)
- CUCM Session Management Edition
- CUCM IM & Presence Service
- Cisco Unity Connection
- Cisco Dedicated Webex Calling Instances
Impact and Scope
Note: Legacy versions are also considered potentially vulnerable and should be evaluated immediately.
If successfully exploited, an adversary can execute commands with the privileges of the underlying operating system, potentially leading to unauthorized data access, service disruption, or full network pivot.
Remediation and Patches
Cisco has confirmed that no workarounds are currently available. Security teams must take the following actions:
- For Version 12.5 and older: Upgrade immediately to a supported, fixed release.
- For Versions 14.x and 15.x: Apply the specific security patches detailed in the vendor’s official advisory.
Locating Vulnerable Assets with runZero
To identify potentially exposed systems within your environment, navigate to the Software inventory and execute the following search query:
vendor:=Cisco AND product:="Unified Communications Manager"[Insert Query Here]
About runZero
runZero, a network discovery and asset inventory solution, was founded in 2018 by HD Moore, the creator of Metasploit. HD envisioned a modern active discovery solution that could find and identify everything on a network–without credentials. As a security researcher and penetration tester, he often employed benign ways to get information leaks and piece them together to build device profiles. Eventually, this work led him to leverage applied research and the discovery techniques developed for security and penetration testing to create runZero.
About Version 2 Digital
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.
Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.
