Multiple vulnerabilities in Cisco Unity Connection, including remote code execution, privilege escalation, and security restriction bypass flaws, can be exploited by a remote attacker. The article does not provide CVSS scores, specific affected version ranges, fixed version numbers, or workarounds, directing readers instead to the vendor's security advisories for detailed remediation information.
Multiple vulnerabilities were identified in Cisco Unity Connection. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, elevation of privilege and security restriction bypass on the targeted system. Impact Remote Code Execution Elevation of Privilege Security Restriction Bypass System / Technologies affected Cisco Unity Connection For affected versions, please refer to the link issued by the vendor: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cuc-unauth-afu-FROYsCsD Solutions Before installation of the software, please visit the vendor web-site for more details. Apply fixes issued by the vendor: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-unity-rce-ssrf-hENhuASy