CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2025-20309

CVSS 10.0v3.1pub. 2025-07-02upd. 2025-07-03

A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attacker to log in to an affected device using the root account, which has default, static credentials that cannot be changed or deleted. This vulnerability is due to the presence of static user credentials for the root account that are reserved for use during development. An attacker could exploit this vulnerability by using the account to log in to an affected system. A successful exploit could allow the attacker to log in to the affected system and execute arbitrary commands as the root user.

🤖 AI Analysis
How it works

The vulnerability results from the presence of static, default authentication credentials (CWE-798) assigned to the root account, which cannot be changed or removed by the administrator. An attacker without any prior authentication can use these credentials to log in to the system remotely over the network. After successful login, the attacker gains the ability to execute arbitrary commands with root user privileges.

Impact

The attacker gains full, unrestricted access to the system with the highest privileges (root), enabling execution of arbitrary commands, configuration modification, data theft, and complete takeover of the device.

Mitigation & patch

Apply patches available from the manufacturer in accordance with references published at: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-ssh-m4UBdpE7

Who is affected

Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) — specific versions indicated in the manufacturer's references

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Cisco Unified Communications Manager

    APP
    Cisco
    15.0.1.13010-115.0.1.13011-115.0.1.13012-115.0.1.13013-115.0.1.13014-115.0.1.13015-115.0.1.13016-115.0.1.13017-1
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2024-20253CRITICAL9.9PL ✓ten sam produkt

RCE w produktach Cisco Unified Communications — eskalacja do root

CVE-2017-12337CRITICAL9.8ten sam produkt

A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating Sy...

CVE-2026-20230HIGH8.6⚠ KEVten sam produkt

A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager ...

CVE-2026-20045HIGH8.2⚠ KEVten sam produkt

A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Ses...

CVE-2024-20375HIGH8.6ten sam produkt

A vulnerability in the SIP call processing function of Cisco Unified Communications Manager (Unified CM) and C...