Overview
Cisco has disclosed two critical vulnerabilities in Unified CCX that pose severe risks to contact centre environments. These vulnerabilities allow attackers to upload malicious files and execute arbitrary commands with root privileges and enables them to bypass authentication in the CCX Editor application, granting administrative control over script creation and execution. Both issues stem from flawed authentication mechanisms and can be exploited remotely without user interaction.
- CVE-2025-20354: Cisco Unified CCX Remote Code Execution (CVSSv3 9.8). affects versions <= 10.5.
- CVE-2025-20358: Cisco Unified CCX Editor Authentication Bypass (CVSSv3 9.4). Affected versions <= 10.5.
Oracle Fusion Middleware Identity Manager contains a critical vulnerability in its RESY WebServices component. This flaw allows unauthenticated attackers with network access to completely compromise the Identity Manager instance. Exploitation could result in full administrative takeover, impacting confidentiality, integrity, and availability of identity management operations.
- CVE-2025-61757: Oracle Identity Manager REST WebServices Remote Compromise (CVSSv3 9.8). Affects versions 2.2.1.4.0 and 14.1.2.1.0.
Fortinet FortiWeb suffers from an OS command injection vulnerability that could allow authenticated attackers to execute arbitrary commands on the underlying operating system. This issue arises from improper input sanitisation and can be exploited via crafted HTTP requests or CLI commands, potentially leading to unauthorised code execution and system compromise.
- CVE-2025-58034: Fortinet FortiWeb OS Command Injection (CVSSv3 6.7). Affects versions <= 7.0.2.
Recommended Action
Organisations and individuals are strongly advised to review the appropriate security advisories and apply the relevant patches or mitigations:
-
- Cisco - Security Advisories
- Oracle - Critical Patch Updates
- Fortinet FortiWeb - PSIRT