Attackers can paralyze Cisco's Unified Communications Manager VoIP system
Attacks on several Cisco products are possible due to security vulnerabilities. Updates are available.
Vulnerabilities threaten Cisco devices.
(Image: Bild erstellt mit KI in Bing Designer durch heise online / dmk)
Cisco's VoIP system Unified Communications Manager (Unified CM), among others, can be attacked and attackers can disrupt communication between devices after a successful attack.
No connection under this number
The vulnerability (CVE-2024-20375) is classified as"high" threat level. Because errors occur when processing SIP messages, attackers can interrupt VoIP calls with special requests. Attacks should be possible remotely and without authentication.
Videos by heise
The developers claim to have solved the security problem in the Unified CM releases 12.5(1)SU9, 14SU4 and 15SU1. Cisco states that it has not yet observed any evidence of attacks.
Further threats
Attackers can also target gaps in the Identity Services Engine. Among other things, system information can be leaked to these locations (CVE-2024-20466"medium"). Admins can find more information on the vulnerabilities and security updates in the linked alerts.
List sorted by threat level in descending order:
- Cisco Unified Communications Manager Denial of Service
- Cisco Identity Services Engine REST API Blind SQL Injection
- Cisco Identity Services Engine Sensitive Information Disclosure
- Cisco Identity Services Engine Cross-Site Request Forgery
- Cisco Unified Communications Manager Cross-Site Scripting
(des)
