CVE STALKER

CVE-2022-20658

CVSS8
DESCRIPTIONA vulnerability in the web-based management interface of Cisco Unified Contact Center Management Portal (Unified CCMP) and Cisco Unified Contact Center Domain Manager (Unified CCDM) could allow an authenticated, remote attacker to elevate their privileges to Administrator. This vulnerability is due to the lack of server-side validation of user permissions. An attacker could exploit this vulnerability by submitting a crafted HTTP request to a vulnerable system. A successful exploit could allow the attacker to create Administrator accounts. With these accounts, the attacker could access and modify telephony and user resources across all the Unified platforms that are associated to the vulnerable Cisco Unified CCMP. To successfully exploit this vulnerability, an attacker would need valid Advanced User credentials.
HEAT SCORE142

WORDS

TWEETS

DATE TWEETS USER
2022-01-20 22:30:44Cisco の Unified CCMP/CCDM の深刻な脆弱性 CVE-2022-20658 が FIX #security #vulnerability #cisco https://t.co/5xUYYUoOf6 http://iototsecnews.jp/2022/01/13/cisco-releases-patch-for-critical-bug-affecting-unified-ccmp-and-unified-ccdm/iototsecnews
2022-01-18 21:12:06Critical #Cisco contact centre bug (CVE-2022-20658) let #hackers access telephone queues. #CyberSecurity #infosec… https://t.co/EGK0aet20k https://twitter.com/i/web/status/1483545494605508616twelvesec
2022-01-17 07:40:05Cisco-Admins: UCCE bitte schleunigst patchen gegen CVE-2022-20658 (9.6) https://t.co/L1AJ7SsU30 via @threatpost https://threatpost.com/critical-cisco-contact-center-bug/177681/teezeh
2022-01-16 09:30:04این #آسیب_پذیری را می‌توانید با کد CVE-2022-20658 دنبال کنید. CVSS این باگ 9.6 است؛ که جزء باگ‌های خطرناک به حساب م… https://t.co/8Chl5PdLkJ https://twitter.com/i/web/status/1482645424146194432falnic_iranhp
2022-01-15 20:30:08Upcoming blog about Cisco UCM is NOT about CVE-2022-20658 or any other CVE. It's about attacker methodology and too… https://t.co/5mD1XrhB2e https://twitter.com/i/web/status/1482448892952260619Bandrel
2022-01-15 15:11:42CVE-2022-20658 https://t.co/mMYKDJJTYk #HarsiaInfo https://har-sia.info/CVE-2022-20658.htmlHar_sia
2022-01-15 14:20:36CVE-2022-20658ohhara_shiojiri
2022-01-15 12:43:43"RT @TheHackersNews: Cisco releases patch for a new critical #vulnerability (CVE-2022-20658 / CVSS 9.6) affecting t… https://t.co/iQvvynA10m https://twitter.com/i/web/status/1482329917719289858trip_elix
2022-01-15 10:41:25New post from https://t.co/uXvPWJy6tj (CVE-2022-20658 (unified_contact_center_express, unified_contact_center_manag… https://t.co/fwL52Td7zw http://www.sesin.at https://twitter.com/i/web/status/1482300366796599297WolfgangSesin
2022-01-15 10:41:13New post from https://t.co/9KYxtdZjkl (CVE-2022-20658 (unified_contact_center_express, unified_contact_center_manag… https://t.co/K6SjsLmJnW http://www.sesin.at https://twitter.com/i/web/status/1482300391370932225www_sesin_at
2022-01-15 10:00:23With a severity score of 9.6, the issue in #Cisco, #CVE-2022-20658 & involves a hole in the system's verification o… https://t.co/848okuICk4 https://twitter.com/i/web/status/1482290609507520515Mawg0ud
2022-01-15 09:12:39⚠CVE-2022-20658⚠ Nueva Vulnerabilidad CISCO de severidad crítica. Recursos afectados: cisco:unified_contact_cente… https://t.co/kiQG2k1pZA https://twitter.com/i/web/status/1482277049570058249GrupoICA_Ciber
2022-01-15 08:12:23CVE-2022-20658 A vulnerability in the web-based management interface of Cisco Unified Contact Center Management Por… https://t.co/hSzWsvS1TB https://twitter.com/i/web/status/1482263569815248899threatmeter
2022-01-15 03:31:23#Cisco Systems has rolled out #security updates for a critical #cybersecurity #vulnerability (CVE-2022-20658) affec… https://t.co/coHqMrDJMb https://twitter.com/i/web/status/1482191570279575553twelvesec
2022-01-14 18:54:13🚨 NEW: CVE-2022-20658 🚨 A vulnerability in the web-based management interface of Cisco Unified Contact Center Manag… https://t.co/hDqNf9S4EG https://twitter.com/i/web/status/1482060750210445316threatintelctr
2022-01-14 17:40:49#Cisco releases patch for a new critical #vulnerability (CVE-2022-20658 / CVSS 9.6) affecting the Unified CCMP and… https://t.co/Xs4AQjzvNa https://twitter.com/i/web/status/1482043836159467530YourAnonRiots
2022-01-14 16:22:40Rastreada como CVE-2022-20658, la vulnerabilidad ha sido clasificada con una gravedad de 9,6 en el sistema de puntu… https://t.co/8xUkSkxOAu https://twitter.com/i/web/status/1482022685546844161EHCGroup
2022-01-14 15:13:26Cisco releases patch for a new critical vulnerability (CVE-2022-20658 / CVSS 9.6) affecting the Unified CCMP and Un… https://t.co/GTD4RStHHX https://twitter.com/i/web/status/1482004855992598537ksg93rd
2022-01-14 15:12:33CVE-2022-20658 https://t.co/mMYKDJJTYk #HarsiaInfo https://har-sia.info/CVE-2022-20658.htmlHar_sia
2022-01-14 14:00:13Top 3 trending CVEs on Twitter Past 24 hrs: CVE-2022-20658: 1M (audience size) CVE-2021-44228: 585.3K CVE-2022-219… https://t.co/2zJlTvnXxB https://twitter.com/i/web/status/1481989484912820225CVEtrends
2022-01-14 12:51:50Cisco releases patch for a new critical #vulnerability (CVE-2022-20658 / CVSS 9.6) affecting the Unified CCMP and U… https://t.co/j66zzlhMdO https://twitter.com/i/web/status/1481971610219421697security_wang
2022-01-14 10:50:15Cisco releases patch for a new critical #vulnerability (CVE-2022-20658 / CVSS 9.6) affecting the Unified CCMP and U… https://t.co/OeRTJp5iYc https://twitter.com/i/web/status/1481941411276615681unix_root
2022-01-14 09:20:36#Cisco Releases Patch for #Critical #Vulnerability (CVE-2022-20658) that could be weaponized to create rogue… https://t.co/iQE4OQ2uGJ https://twitter.com/i/web/status/1481918264351592449step9consulting
2022-01-14 09:00:16Cisco releases patch for a new critical #vulnerability (CVE-2022-20658 / CVSS 9.6) affecting the Unified #CCMP and… https://t.co/jbZJV5DeSH https://twitter.com/i/web/status/1481913835892056065Hackeramod
2022-01-14 08:50:42Cisco releases patch for a new critical #vulnerability (CVE-2022-20658 / CVSS 9.6) affecting the Unified CCMP and U… https://t.co/OoPY89dFwh https://twitter.com/i/web/status/1481911212329902084Swati_THN
2022-01-14 07:41:27"Cisco releases patch for a new critical #vulnerability (CVE-2022-20658 / CVSS 9.6) affecting the Unified CCMP and… https://t.co/iZi95dEZhD https://twitter.com/i/web/status/1481892049867653121trip_elix
2022-01-14 07:41:07New post from https://t.co/9KYxtdZjkl (CVE-2022-20658) has been published on https://t.co/xlrItsy38N http://www.sesin.at https://www.sesin.at/2022/01/14/cve-2022-20658/www_sesin_at
2022-01-14 07:41:02New post from https://t.co/uXvPWJy6tj (CVE-2022-20658) has been published on https://t.co/0VL41ZbIYH http://www.sesin.at https://www.sesin.at/2022/01/14/cve-2022-20658/WolfgangSesin
2022-01-14 07:30:09Cisco releases patch for a new critical #vulnerability (CVE-2022-20658 / CVSS 9.6) affecting the Unified CCMP and U… https://t.co/X1Du6tTOye https://twitter.com/i/web/status/1481891166451019777TheHackersNews
2022-01-14 06:55:11🚨 NEW: CVE-2022-20658 🚨 A vulnerability in the web-based management interface of Cisco Unified Contact Center Manag… https://t.co/POrJoCKC8c https://twitter.com/i/web/status/1481879557863092226threatintelctr
2022-01-14 05:59:24🚨 NEW: CVE-2022-20658 🚨 A vulnerability in the web-based management interface of Cisco Unified Contact Center Mana… https://t.co/l7kgLm0p3P https://twitter.com/i/web/status/1481864456674160640threatintelctr
2022-01-14 05:52:45CVE-2022-20658 A vulnerability in the web-based management interface of Cisco Unified Contact Center Management Por… https://t.co/TneVpleQeZ https://twitter.com/i/web/status/1481864959667679236CVEnew
2022-01-14 05:22:13CVE-2022-20658 : A vulnerability in the web-based management interface of Cisco Unified Contact Center Management… https://t.co/5btrLQw9mW https://twitter.com/i/web/status/1481856350812528641CVEreport
2022-01-14 05:00:54『allow an authenticated, remote attacker to elevate their privileges to Administrator.』 CVE-2022-20658 Cisco Unifi… https://t.co/5FoWA5vZjC https://twitter.com/i/web/status/1481852487883960324autumn_good_35
2022-01-13 14:25:29Cisco Patches Critical Vulnerability in Contact Center Products | S... (Securityweek) Tracked as CVE-2022-20658 (C… https://t.co/F9LhAodxNA https://twitter.com/i/web/status/1481627922519576576InfoSec_b