cnvd - cnvd-2017-08798

cnvd-2017-08798

Vulnerability from cnvd

Title: Cisco Unified Contact Center Enterprise信息泄露漏洞（CNVD-2017-08798）

Description:

Cisco Unified Contact Center Enterprise(UCCE)是美国思科（Cisco）公司的一套基于IP的联系中心组件。该组件在IP基础设施上提供了智能联系路由、呼叫处理、网络到桌面计算机电话集成（CTI）和多通道联系管理功能。

Cisco UCCE 11.5(1)版本和11.6(1)版本中的Cisco Finesse Notification Service存在安全漏洞，由于用户账户使用硬编码密码。远程攻击者可利用该漏洞检索信息。

Severity: 中

Patch Name: Cisco Unified Contact Center Enterprise信息泄露漏洞（CNVD-2017-08798）的补丁

Patch Description:

Cisco UCCE 11.5(1)版本和11.6(1)版本中的Cisco Finesse Notification Service存在安全漏洞，由于用户账户使用硬编码密码。远程攻击者可利用该漏洞检索信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

用户可参考如下厂商提供的安全补丁以修复该漏洞： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-finesse-ucce

Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-6626 http://www.securityfocus.com/bid/98291

Impacted products

Name
['Cisco Cisco Unified Contact Center Enterprise 11.5(1)', 'Cisco Cisco Unified Contact Center Enterprise 11.6(1)']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "98291"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-6626",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6626"
    }
  },
  "description": "Cisco Unified Contact Center Enterprise(UCCE)\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4e00\u5957\u57fa\u4e8eIP\u7684\u8054\u7cfb\u4e2d\u5fc3\u7ec4\u4ef6\u3002\u8be5\u7ec4\u4ef6\u5728IP\u57fa\u7840\u8bbe\u65bd\u4e0a\u63d0\u4f9b\u4e86\u667a\u80fd\u8054\u7cfb\u8def\u7531\u3001\u547c\u53eb\u5904\u7406\u3001\u7f51\u7edc\u5230\u684c\u9762\u8ba1\u7b97\u673a\u7535\u8bdd\u96c6\u6210\uff08CTI\uff09\u548c\u591a\u901a\u9053\u8054\u7cfb\u7ba1\u7406\u529f\u80fd\u3002\r\n\r\nCisco UCCE 11.5(1)\u7248\u672c\u548c11.6(1)\u7248\u672c\u4e2d\u7684Cisco Finesse Notification Service\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u7531\u4e8e\u7528\u6237\u8d26\u6237\u4f7f\u7528\u786c\u7f16\u7801\u5bc6\u7801\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u68c0\u7d22\u4fe1\u606f\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-finesse-ucce",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-08798",
  "openTime": "2017-06-08",
  "patchDescription": "Cisco Unified Contact Center Enterprise(UCCE)\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4e00\u5957\u57fa\u4e8eIP\u7684\u8054\u7cfb\u4e2d\u5fc3\u7ec4\u4ef6\u3002\u8be5\u7ec4\u4ef6\u5728IP\u57fa\u7840\u8bbe\u65bd\u4e0a\u63d0\u4f9b\u4e86\u667a\u80fd\u8054\u7cfb\u8def\u7531\u3001\u547c\u53eb\u5904\u7406\u3001\u7f51\u7edc\u5230\u684c\u9762\u8ba1\u7b97\u673a\u7535\u8bdd\u96c6\u6210\uff08CTI\uff09\u548c\u591a\u901a\u9053\u8054\u7cfb\u7ba1\u7406\u529f\u80fd\u3002\r\n\r\nCisco UCCE 11.5(1)\u7248\u672c\u548c11.6(1)\u7248\u672c\u4e2d\u7684Cisco Finesse Notification Service\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u7531\u4e8e\u7528\u6237\u8d26\u6237\u4f7f\u7528\u786c\u7f16\u7801\u5bc6\u7801\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u68c0\u7d22\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Unified Contact Center Enterprise\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2017-08798\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Cisco Cisco Unified Contact Center Enterprise 11.5(1)",
      "Cisco Cisco Unified Contact Center Enterprise 11.6(1)"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2017-6626\r\nhttp://www.securityfocus.com/bid/98291",
  "serverity": "\u4e2d",
  "submitTime": "2017-05-08",
  "title": "Cisco Unified Contact Center Enterprise\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2017-08798\uff09"
}

CVE-2017-6626 (GCVE-0-2017-6626)

Vulnerability from cvelistv5

Published

2017-05-03 21:00

Modified

2024-08-05 15:33

Severity ?

CWE

CWE-200

Summary

A vulnerability in the Cisco Finesse Notification Service for Cisco Unified Contact Center Enterprise (UCCE) 11.5(1) and 11.6(1) could allow an unauthenticated, remote attacker to retrieve information from agents using the Finesse Desktop. The vulnerability is due to the existence of a user account that has an undocumented, hard-coded password. An attacker could exploit this vulnerability by using the hard-coded credentials to subscribe to the Finesse Notification Service, which would allow the attacker to receive notifications when an agent signs in or out of the Finesse Desktop, when information about an agent changes, or when an agent's state changes. Cisco Bug IDs: CSCvc08314.

References

▼	URL	Tags
	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-finesse-ucce	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/98291	vdb-entry, x_refsource_BID
	http://www.securitytracker.com/id/1038396	vdb-entry, x_refsource_SECTRACK

Impacted products

	Vendor	Product	Version
	n/a	Cisco Finesse for Cisco Unified Contact Center Enterprise	Version: Cisco Finesse for Cisco Unified Contact Center Enterprise

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T15:33:20.464Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-finesse-ucce"
          },
          {
            "name": "98291",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/98291"
          },
          {
            "name": "1038396",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1038396"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Finesse for Cisco Unified Contact Center Enterprise",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Cisco Finesse for Cisco Unified Contact Center Enterprise"
            }
          ]
        }
      ],
      "datePublic": "2017-05-03T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the Cisco Finesse Notification Service for Cisco Unified Contact Center Enterprise (UCCE) 11.5(1) and 11.6(1) could allow an unauthenticated, remote attacker to retrieve information from agents using the Finesse Desktop. The vulnerability is due to the existence of a user account that has an undocumented, hard-coded password. An attacker could exploit this vulnerability by using the hard-coded credentials to subscribe to the Finesse Notification Service, which would allow the attacker to receive notifications when an agent signs in or out of the Finesse Desktop, when information about an agent changes, or when an agent\u0027s state changes. Cisco Bug IDs: CSCvc08314."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-200",
              "description": "CWE-200",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-10T09:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-finesse-ucce"
        },
        {
          "name": "98291",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/98291"
        },
        {
          "name": "1038396",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1038396"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2017-6626",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco Finesse for Cisco Unified Contact Center Enterprise",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Cisco Finesse for Cisco Unified Contact Center Enterprise"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability in the Cisco Finesse Notification Service for Cisco Unified Contact Center Enterprise (UCCE) 11.5(1) and 11.6(1) could allow an unauthenticated, remote attacker to retrieve information from agents using the Finesse Desktop. The vulnerability is due to the existence of a user account that has an undocumented, hard-coded password. An attacker could exploit this vulnerability by using the hard-coded credentials to subscribe to the Finesse Notification Service, which would allow the attacker to receive notifications when an agent signs in or out of the Finesse Desktop, when information about an agent changes, or when an agent\u0027s state changes. Cisco Bug IDs: CSCvc08314."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-200"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-finesse-ucce",
              "refsource": "CONFIRM",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-finesse-ucce"
            },
            {
              "name": "98291",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/98291"
            },
            {
              "name": "1038396",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1038396"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2017-6626",
    "datePublished": "2017-05-03T21:00:00",
    "dateReserved": "2017-03-09T00:00:00",
    "dateUpdated": "2024-08-05T15:33:20.464Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted