fkie_nvd - fkie_cve-2025-20112

fkie_cve-2025-20112

Vulnerability from fkie_nvd

Published

2025-05-21 17:15

Modified

2025-05-21 20:24

Severity ?

5.1 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N

Summary

A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileges to root on an affected device. This vulnerability is due to excessive permissions that have been assigned to system commands. An attacker could exploit this vulnerability by executing crafted commands on the underlying operating system. A successful exploit could allow the attacker to escape the restricted shell and gain root privileges on the underlying operating system of an affected device. To successfully exploit this vulnerability, an attacker would need administrative access to the ESXi hypervisor.

References

▶	URL	Tags
	psirt@cisco.com	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-kkhZbHR5

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileges to root on an affected device.\r\n\r\nThis vulnerability is due to excessive permissions that have been assigned to system commands.\u0026nbsp;An attacker could exploit this vulnerability by executing crafted commands on the underlying operating system. A successful exploit could allow the attacker to escape the restricted shell and gain root privileges on the underlying operating system of an affected device. To successfully exploit this vulnerability, an attacker would need administrative access to the ESXi hypervisor."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en varios productos de Cisco Unified Communications and Contact Center Solutions podr\u00eda permitir que un atacante local autenticado eleve los privilegios de root en un dispositivo afectado. Esta vulnerabilidad se debe a la asignaci\u00f3n excesiva de permisos a los comandos del sistema. Un atacante podr\u00eda explotar esta vulnerabilidad ejecutando comandos manipulados en el sistema operativo subyacente. Una explotaci\u00f3n exitosa podr\u00eda permitir al atacante escapar del shell restringido y obtener privilegios de root en el sistema operativo subyacente de un dispositivo afectado. Para explotar esta vulnerabilidad, un atacante necesitar\u00eda acceso administrativo al hipervisor ESXi."
    }
  ],
  "id": "CVE-2025-20112",
  "lastModified": "2025-05-21T20:24:58.133",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 5.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 4.2,
        "source": "psirt@cisco.com",
        "type": "Primary"
      }
    ]
  },
  "published": "2025-05-21T17:15:55.387",
  "references": [
    {
      "source": "psirt@cisco.com",
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-kkhZbHR5"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-268"
        }
      ],
      "source": "psirt@cisco.com",
      "type": "Primary"
    }
  ]
}

CVE-2025-20112 (GCVE-0-2025-20112)

Vulnerability from cvelistv5

Published

2025-05-21 16:19

Modified

2025-05-22 03:55

Severity ?

5.1 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N

CWE

CWE-268 - Privilege Chaining

Summary

References

►

URL

Tags

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-kkhZbHR5

Impacted products

Vendor

Product

Version

►

Cisco

Cisco Emergency Responder

Version: 12.5(1a)
Version: 12.5(1)SU1
Version: 12.5(1)
Version: 12.5(1)SU2
Version: 12.5(1)SU3
Version: 12.5(1)SU4
Version: 14
Version: 12.5(1)SU5
Version: 14SU1
Version: 12.5(1)SU6
Version: 14SU2
Version: 12.5(1)SU7
Version: 14SU3
Version: 12.5(1)SU8
Version: 12.5(1)SU8a
Version: 12.5(1)SU8b
Version: 14SU3a
Version: 15
Version: 15SU1
Version: 15SU1a
Version: 14SU4
Version: 12.5(1)SU9

Cisco	Cisco Finesse	Version: 11.0(1)ES_Rollback Version: 10.5(1)ES4 Version: 11.6(1)ES3 Version: 11.0(1)ES2 Version: 12.0(1)ES2 Version: 10.5(1)ES3 Version: 11.0(1) Version: 11.6(1)FIPS Version: 11.6(1)ES4 Version: 11.0(1)ES3 Version: 10.5(1)ES6 Version: 11.0(1)ES7 Version: 11.5(1)ES4 Version: 10.5(1)ES8 Version: 11.5(1) Version: 11.6(1) Version: 10.5(1)ES10 Version: 11.6(1)ES2 Version: 11.6(1)ES Version: 11.0(1)ES6 Version: 11.0(1)ES4 Version: 12.0(1) Version: 11.6(1)ES7 Version: 10.5(1)ES7 Version: 11.6(1)ES8 Version: 11.5(1)ES1 Version: 11.6(1)ES1 Version: 11.5(1)ES5 Version: 11.0(1)ES1 Version: 10.5(1) Version: 11.6(1)ES6 Version: 10.5(1)ES2 Version: 12.0(1)ES1 Version: 11.0(1)ES5 Version: 10.5(1)ES5 Version: 11.5(1)ES3 Version: 11.5(1)ES2 Version: 10.5(1)ES9 Version: 11.6(1)ES5 Version: 11.6(1)ES9 Version: 11.5(1)ES6 Version: 10.5(1)ES1 Version: 12.5(1) Version: 12.0(1)ES3 Version: 11.6(1)ES10 Version: 12.5(1)ES1 Version: 12.5(1)ES2 Version: 12.0(1)ES4 Version: 12.5(1)ES3 Version: 12.0(1)ES5 Version: 12.5(1)ES4 Version: 12.0(1)ES6 Version: 12.5(1)ES5 Version: 12.5(1)ES6 Version: 12.0(1)ES7 Version: 12.6(1) Version: 12.5(1)ES7 Version: 11.6(1)ES11 Version: 12.6(1)ES1 Version: 12.0(1)ES8 Version: 12.5(1)ES8 Version: 12.6(1)ES2 Version: 12.6(1)ES3 Version: 12.6(1)ES4 Version: 12.6(1)ES5 Version: 12.5(2) Version: 12.5(1)_SU Version: 12.5(1)SU Version: 12.6(1)ES6 Version: 12.5(1)SU ES1 Version: 12.6(1)ES7 Version: 12.6(1)ES7_ET Version: 12.6(2) Version: 12.6(1)ES8 Version: 12.6(1)ES9 Version: 12.6(2)ES1 Version: 12.6(1)ES10 Version: 12.5(1)SU ES2 Version: 12.6(1)ES11 Version: 12.6(2)ES2 Version: 12.6(2)ES3 Version: 12.5(1)SU ES3 Version: 12.6(2)ES4 Version: 12.6(2)ES6
Cisco	Cisco Prime Collaboration Deployment	Version: 11.5(1) Version: 11.0(1a) Version: 11.5(1)SU1 Version: 10.5(3) Version: 12.6(1) Version: 11.0(1) Version: 11.6(2) Version: 12.1(1) Version: 12.0(1a) Version: 11.5(3) Version: 10.5(1) Version: 12.5(1) Version: 11.5(2) Version: 11.6(1) Version: 10.5(2) Version: 10.5(3)SU1 Version: 14 Version: 14SU1 Version: 14SU2 Version: 14SU3 Version: 15 Version: 15SU1 Version: 14SU4
Cisco	Cisco SocialMiner	Version: 12.5(1)ES01 Version: 10.5(1) Version: 11.6(1) Version: 10.6(1) Version: 12.0(1)ES04 Version: 10.6(2) Version: 12.5(1) Version: 11.6(2) Version: 12.0(1) Version: 12.0(1)ES02 Version: 11.0(1) Version: 11.5(1) Version: 11.5(1)SU1 Version: 12.0(1)ES03 Version: 12.5(1)SU3 Version: 12.5(1)SU1 Version: 12.5(1)SU2
Cisco	Cisco Unified Communications Manager	Version: 12.5(1)SU2 Version: 12.5(1)SU1 Version: 12.5(1) Version: 12.5(1)SU3 Version: 12.5(1)SU4 Version: 14 Version: 12.5(1)SU5 Version: 14SU1 Version: 12.5(1)SU6 Version: 14SU2 Version: 12.5(1)SU7 Version: 12.5(1)SU7a Version: 14SU3 Version: 12.5(1)SU8 Version: 12.5(1)SU8a Version: 15 Version: 15SU1 Version: 14SU4 Version: 14SU4a Version: 15SU1a Version: 12.5(1)SU9
Cisco	Cisco Unified Communications Manager IM and Presence Service	Version: 12.5(1) Version: 12.5(1)SU1 Version: 12.5(1)SU2 Version: 12.5(1)SU3 Version: 12.5(1)SU4 Version: 14 Version: 12.5(1)SU5 Version: 14SU1 Version: 12.5(1)SU6 Version: 14SU2 Version: 14SU2a Version: 12.5(1)SU7 Version: 14SU3 Version: 12.5(1)SU8 Version: 15 Version: 15SU1 Version: 14SU4 Version: 12.5(1)SU9
Cisco	Cisco Unified Contact Center Express	Version: 10.5(1)SU1 Version: 10.6(1) Version: 11.6(1) Version: 10.6(1)SU1 Version: 10.6(1)SU3 Version: 11.6(2) Version: 12.0(1) Version: 10.0(1)SU1 Version: 11.0(1)SU1 Version: 11.5(1)SU1 Version: 10.5(1) Version: 12.5(1) Version: 12.5(1)SU1 Version: 12.5(1)SU2 Version: 12.5(1)SU3 Version: 12.5(1)_SU03_ES01 Version: 12.5(1)_SU03_ES02 Version: 12.5(1)_SU02_ES03 Version: 12.5(1)_SU02_ES04 Version: 12.5(1)_SU02_ES02 Version: 12.5(1)_SU01_ES02 Version: 12.5(1)_SU01_ES03 Version: 12.5(1)_SU02_ES01 Version: 11.6(2)ES07 Version: 11.6(2)ES08 Version: 12.5(1)_SU01_ES01 Version: 12.0(1)ES04 Version: 12.5(1)ES02 Version: 12.5(1)ES03 Version: 11.6(2)ES06 Version: 12.5(1)ES01 Version: 12.0(1)ES03 Version: 12.0(1)ES01 Version: 11.6(2)ES05 Version: 12.0(1)ES02 Version: 11.6(2)ES04 Version: 11.6(2)ES03 Version: 11.6(2)ES02 Version: 11.6(2)ES01 Version: 10.6(1)SU3ES03 Version: 11.0(1)SU1ES03 Version: 10.6(1)SU3ES01 Version: 10.5(1)SU1ES10 Version: 10.0(1)SU1ES04 Version: 11.5(1)SU1ES03 Version: 11.6(1)ES02 Version: 11.5(1)ES01 Version: 9.0(2)SU3ES04 Version: 10.6(1)SU2 Version: 10.6(1)SU2ES04 Version: 11.6(1)ES01 Version: 10.6(1)SU3ES02 Version: 11.5(1)SU1ES02 Version: 11.5(1)SU1ES01 Version: 8.5(1)SU4ES09 Version: 8.5(1) Version: 11.0(1)SU1ES02 Version: 12.5(1)_SU03_ES03 Version: 12.5(1)_SU03_ES04 Version: 12.5(1)_SU03_ES05 Version: 12.5(1)_SU03_ES06
Cisco	Cisco Unified Intelligence Center	Version: 11.6(1) Version: 10.5(1) Version: 11.0(1) Version: 11.5(1) Version: 12.0(1) Version: 12.5(1) Version: 11.0(2) Version: 12.6(1) Version: 12.5(1)SU Version: 12.6(1)_ET Version: 12.6(1)_ES05_ET Version: 11.0(3) Version: 12.6(2) Version: 12.6(2)_504_Issue_ET Version: 12.6.1_ExcelIssue_ET Version: 12.6(2)_Permalink_ET Version: 12.6.2_CSCwk19536_ET Version: 12.6.2_CSCwm96922_ET Version: 12.6.2_Amq_OOS_ET Version: 12.5(2)ET_CSCwi79933 Version: 12.6(2)_ET Version: 12.6.2_CSCwn48501_ET
Cisco	Cisco Unity Connection	Version: 12.5(1) Version: 12.5(1)SU1 Version: 12.5(1)SU2 Version: 12.5(1)SU3 Version: 12.5(1)SU4 Version: 14 Version: 12.5(1)SU5 Version: 14SU1 Version: 12.5(1)SU6 Version: 14SU2 Version: 12.5(1)SU7 Version: 14SU3 Version: 12.5(1)SU8 Version: 14SU3a Version: 12.5(1)SU8a Version: 15 Version: 15SU1 Version: 14SU4 Version: 12.5(1)SU9
Cisco	Cisco Virtualized Voice Browser	Version: 11.0(1) Version: 11.6(1)_ES84 Version: 11.5(1)_ES54 Version: 11.5(1)_ES27 Version: 11.5(1) Version: 11.5(1)ES36 Version: 12.0(1)_ES01 Version: 11.6(1)_ES85 Version: 12.5(1)_ES05 Version: 11.5(1)_ES32 Version: 11.6(1)_ES83 Version: 11.5(1)_ES29 Version: 12.0(1)_ES06 Version: 12.5(1) Version: 12.0(1)_ES07 Version: 11.6(1)_ES80 Version: 12.0(1)_ES05 Version: 11.5(1)_ES36 Version: 11.5(1)_ES53 Version: 12.5(1)_ES08 Version: 11.5(1)ES43 Version: 12.0(1)_ES03 Version: 11.6(1)_ES86 Version: 12.0(1)_ES04 Version: 11.5(1)ES27 Version: 12.5(1)_ES03 Version: 11.6(1)_ES88 Version: 12.5(1)_ES06 Version: 11.6(1)_ES82 Version: 11.6(1) Version: 11.5(1)ES29 Version: 12.5(1)_ES04 Version: 12.5(1)_ES07 Version: 11.6(1)_ES87 Version: 11.6(1)_ES81 Version: 12.0(1) Version: 11.6(1)_ES22 Version: 11.5(1)_ES43 Version: 11.5(1)ES32 Version: 12.0(1)_ES02 Version: 12.5(1)_ES02 Version: 12.6(1) Version: 12.5(1)_ES09 Version: 12.6(1)_ES01 Version: 12.0(1)_ES08 Version: 12.5(1)_ES10 Version: 12.6(1)_ES02 Version: 12.5(1)_ES11 Version: 12.5(1)_ES12 Version: 12.6(1)_ES03 Version: 12.5(1)_ES13 Version: 12.5(1)_ES14 Version: 12.6(1)_ES04 Version: 12.6(1)_ES05 Version: 12.5(1)_ES15 Version: 12.6(1)_ES06 Version: 12.6(1)_ET Version: 12.5(1)_ES16 Version: 12.5(1)SU Version: 12.5(1)_SU Version: 12.5(1)_SU_ES01 Version: 12.6(1)_ES07 Version: 12.6(2) Version: 12.5(1)_ES17 Version: 12.6(1)_ES08 Version: 12.6(1)_ES09 Version: 12.6(1)_ES10 Version: 12.5(1)_SU_ES02 Version: 12.6(2)_ES01 Version: 12.6(2)_ET01 Version: 12.5(2)_ET Version: 12.6(2)_ES02 Version: 12.6(2)_ET_Streaming Version: 12.6(2)ET_Transcribe Version: 12.6(2)_ES03 Version: 12.6(2)ET_NuanceMix Version: 12.6(2)ET_FileUpload Version: 12.6(2)_ET02 Version: 12.6(2)_ES04 Version: 12.6.2ET_RTPfallback Version: 12.6.2ET_CSCwf55306 Version: 12.6.2_ET_CSCwj36712 Version: 12.5.2 ET-CSCwj33374 Version: 12.5(1) SU ET Version: 12.6(2)ET_CSCwj87296 Version: 12.6(2)_ES05 Version: 12.5.2_ET_CSCvz27014 Version: 12.6(2)_ET Version: 12.6.2-ET Version: 12.6(2)ET_CSCwk83135 Version: 12.6.2_ET_CX_ALAW Version: 12.6.2-ET01-SSL Version: 12.6(2)_ES06

Show details on NVD website