Cisco Emergency Responder
Moderate fix1 remedy
cpe:2.3:a:cisco:emergency_responder:*:*:*:*:*:*:*
Moderate fix1 remedy
- 12.5(1)
- 14
- 15
Cisco Unified Communications and Contact Center Solutions Privilege Escalation Vulnerability
Vulnerability
Patched
A vulnerability exists in multiple Cisco Unified Communications and Contact Center Solutions products, allowing an authenticated, local attacker to elevate privileges to root on the affected device. This issue arises from excessive permissions granted to system commands, enabling an attacker to execute crafted commands on the underlying operating system. Successfully exploiting this vulnerability could allow the attacker to escape the restricted shell and gain root access on the device. Administrative access to the ESXi hypervisor is required for exploitation.
Impact
Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to gain root access on the affected device's operating system.
Remediation
Cisco has released software updates to address this vulnerability. Users should consult the Cisco Security Advisories page for information on fixed releases and upgrade instructions.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
7.5exploitability
3.0remediation
7.7relevance
0.0threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.