A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attacker to log in to an affected device using the root account, which has default, static credentials that cannot be changed or deleted. This vulnerability is due to the presence of static user credentials for the root account that are reserved for use during development. An attacker could exploit this vulnerability by using the account to log in to an affected system. A successful exploit could allow the attacker to log in to the affected system and execute arbitrary commands as the root user.
The vulnerability results from the presence of static, default authentication credentials (CWE-798) assigned to the root account, which cannot be changed or removed by the administrator. An attacker without any prior authentication can use these credentials to log in to the system remotely over the network. After successful login, the attacker gains the ability to execute arbitrary commands with root user privileges.
The attacker gains full, unrestricted access to the system with the highest privileges (root), enabling execution of arbitrary commands, configuration modification, data theft, and complete takeover of the device.
Apply patches available from the manufacturer in accordance with references published at: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-ssh-m4UBdpE7
Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) — specific versions indicated in the manufacturer's references
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HCisco Unified Communications Manager
APPCisco15.0.1.13010-115.0.1.13011-115.0.1.13012-115.0.1.13013-115.0.1.13014-115.0.1.13015-115.0.1.13016-115.0.1.13017-1
Related vulnerabilities
RCE w produktach Cisco Unified Communications — eskalacja do root
A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating Sy...
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager ...
A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Ses...
A vulnerability in the SIP call processing function of Cisco Unified Communications Manager (Unified CM) and C...