Cisco: Code injection vulnerability in Unity Connection and other flaws

Cisco has released almost two dozen security updates. They close several high-risk flaws, for example in Unity Connection.
SDxCentral

Cisco Releases Security Advisory for Cisco Unity Connection

Cisco released a security advisory to address a vulnerability (CVE-2024-20272) in Cisco Unity Connection. A cyber threat actor could exploit this vulnerability to take control of an affected system.
Bleeping Computer

Cisco says critical Unity Connection bug lets attackers get root

Cisco has patched a critical Unity Connection security flaw that can let unauthenticated attackers remotely gain root privileges on unpatched devices. Unity Connection is a fully virtualized messaging ...
Computer Weekly

Cisco fixes high-impact flaw in unified comms platform

A critical vulnerability in Cisco Unity Connection – a messaging and voicemail product that forms part of the networking supplier’s unified communications lineup – could enable unauthenticated and ...