Ref# ADV2024_17 | Date: Jan 25th 2024

---

Cisco has published a security advisory to address vulnerabilities affecting the following products on January 24, 2024. It is recommended that you take the necessary precautions to ensure your products are always protected.    

• Cisco Packaged Contact Center Enterprise (PCCE) – multiple versions 
• Cisco Unified Communications Manager (Unified CM) – multiple versions 
• Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) – multiple versions 
• Cisco Unified Communications Manager Session Management Edition (Unified CM SME) – multiple versions 
• Cisco Unified Contact Center Enterprise (UCCE) – multiple versions 
• Cisco Unified Contact Center Express (UCCX) – multiple versions 
• Cisco Unity Connection – multiple versions 
• Cisco Virtualized Voice Browser – multiple versions 

For more information on these updates, you can follow this URL:   
Cisco Unified Communications Products Remote Code Execution Vulnerability 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: Cisco Security Advisory

References     

• Cisco Security Advisories. (2024, January 24). Retrieved from Cisco. https://sec.cloudapps.cisco.com/security/center/publicationListing.x
• Cisco security advisory. (2024, January 24). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/cisco-security-advisory-av24-049