National Cyber Warfare Foundation (NCWF)

Cisco Unified CCX Remote Code Execution Vulnerabilities (CVE-2025-20354, CVE-2025-20358)
0 user ratings		2025-11-07 18:31:25
milo
Blue Team (CND)

Technical details The problem comes from weak authentication in two different CCX components. CVE-2025-20354 targets the Java RMI service. CCX exposes this service to accept remote data, but it does not properly check who is sending it. That means an attacker can upload a specially crafted file and run commands on the underlying operating system.…


The post Cisco Unified CCX Remote Code Execution Vulnerabilities (CVE-2025-20354, CVE-2025-20358) appeared first on Sentrium Security.


The post Cisco Unified CCX Remote Code Execution Vulnerabilities (CVE-2025-20354, CVE-2025-20358) appeared first on Security Boulevard.



Tom Keech

Source: Security Boulevard
Source Link: https://securityboulevard.com/2025/11/cisco-unified-ccx-remote-code-execution-vulnerabilities-cve-2025-20354-cve-2025-20358/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Blue Team (CND)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.