A vulnerability in the REST API of Cisco Meeting Management could allow a remote, authenticated attacker with low privileges to elevate privileges to administrator on an affected device. This vulnerability exists because proper authorization is not enforced upon REST API users. An attacker could exploit this vulnerability by sending API requests to a specific endpoint. A successful exploit could allow the attacker to gain administrator-level control over edge nodes that are managed by Cisco Meeting Management.
The vulnerability results from improper enforcement of authorization for REST API users. An attacker, possessing only an account with low privileges, can send crafted API requests to a specific endpoint. Successful exploitation of the vulnerability allows takeover of control at the administrator level over edge nodes managed by Cisco Meeting Management. No user interaction or complex attack configuration is required.
An attacker can gain full administrative control over edge nodes managed by Cisco Meeting Management, which may lead to violations of confidentiality, integrity, and availability of the entire meeting infrastructure.
Patches available from the vendor should be applied according to references — detailed information about versions containing the fix is available in the official Cisco advisory: cisco-sa-cmm-privesc-uy2Vf8pc
Cisco Meeting Management — versions indicated in vendor references (advisory cisco-sa-cmm-privesc-uy2Vf8pc)
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HCisco Meeting Management
APPCisco< 3.9.1
Related vulnerabilities
A vulnerability in the Certificate Management feature of Cisco Meeting Management could allow an authenticated...
Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prun...
A vulnerability in the logging subsystem of Cisco Meeting Management could allow an authenticated, remote atta...
Cisco Catalyst SD-WAN — pominięcie uwierzytelnienia z dostępem administracyjnym
RCE przez insecure deserialization w Cisco Secure Firewall Management Center