Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
494
Views
10
Helpful
1
Replies

CSCvo93883 - Cisco Unified Contact Center Express Privilege Escalation Vulnerability

stuartbedale
Level 1
Level 1

‎05-04-2020 02:30 AM

Hi all

 

The Cisco bug (https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvo93883) suggests this is fixes in 11.6(2)ES5, but it also references the Cisco security notice (https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uccx-privesc-Zd7bvwyf) that says this will be fixed in ES6, which is not yet available.  ES5 came out in Sep 2019, but the Security notice is Feb 2020 at the earliest. 

Cisco needs to update the bug, or the Security notice.

And if ES6 i to be released, is there a revised release date as it states end April 2020?

 

Thanks

 

Labels:
1 Reply 1

Wes Sisk
Cisco Employee
Cisco Employee

‎05-04-2020 07:46 AM

To the best of my knowledge, it is resolved in ES6 which will be released in the future. I requested a review of the bug and security advisory for potential update.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents