Vulnerability updated 6 months ago (2024-05-04T20:34:16.807Z)
Download STIX
Preview STIX
CVE-2020-24429 is a vulnerability that was discovered in 2020. It affects the Cisco Unified Contact Center Express (CCX) software, which is used by call centers to manage customer interactions. The vulnerability allows an attacker to execute arbitrary code or cause a denial of service (DoS) attack on the affected system.
The vulnerability is caused by a flaw in the way the software handles user input. Specifically, an attacker can send a specially crafted HTTP request to the CCX server, which will trigger a buffer overflow and allow the attacker to execute arbitrary code. This could result in the attacker gaining complete control over the affected system, stealing sensitive data, or using it as part of a larger attack.
Upon discovery, Cisco released a patch for the vulnerability in September 2020. However, if left unpatched, attackers could still exploit this vulnerability to compromise systems running the affected version of CCX. Therefore, it is highly recommended that organizations using CCX software update to the latest version to prevent potential attacks.
Description last updated: 2023-06-19T06:05:35.101Z
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Source Document References
Information about the CVE-2020-24429 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more