Cisco Unified Intelligence Center Arbitrary File Upload Vulnerability Allowing Privilege Escalation

A vulnerability exists in the web-based management interface of Cisco Unified Intelligence Center, allowing authenticated, remote attackers to upload arbitrary files to affected devices. This issue arises from inadequate validation of uploaded files. Exploitation of this vulnerability could enable attackers to store malicious files on the system and execute arbitrary commands, with the potential to elevate privileges to root. The vulnerability also affects Cisco Unified Contact Center Express, as it includes Cisco Unified Intelligence Center in its software bundle. To exploit this vulnerability, an attacker must have valid credentials for a user account with at least the Report Designer role.

Impact

Successful exploitation allows for arbitrary file uploads, execution of arbitrary commands on the operating system, and elevation of privileges to root.

Remediation

Cisco has released software updates that address this vulnerability. Customers with service contracts should obtain these updates through their usual channels. For those without service contracts, contact the Cisco Technical Assistance Center (TAC) for assistance.