CVE-2025-20288
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-07-16
Last updated on: 2025-07-22
Assigner: Cisco Systems, Inc.
Description
Description
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to conduct a server-side request forgery (SSRF) attack through an affected device.
This vulnerability is due to improper input validation for specific HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to send arbitrary network requests that are sourced from the affected device.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| cisco | unified_intelligence_center | 10.5\(1\) |
| cisco | unified_intelligence_center | 11.0\(1\) |
| cisco | unified_intelligence_center | 11.0\(2\) |
| cisco | unified_intelligence_center | 11.0\(3\) |
| cisco | unified_intelligence_center | 11.5\(1\) |
| cisco | unified_intelligence_center | 11.6\(1\) |
| cisco | unified_intelligence_center | 12.0\(1\) |
| cisco | unified_intelligence_center | 12.5\(1\) |
| cisco | unified_intelligence_center | 12.5\(1\)su |
| cisco | unified_intelligence_center | 12.6\(1\) |
| cisco | unified_intelligence_center | 12.6\(1\)_es05_et |
| cisco | unified_intelligence_center | 12.6\(1\)_et |
| cisco | unified_intelligence_center | 12.6\(2\) |
| cisco | unified_contact_center_express | 10.5\(1\) |
| cisco | unified_contact_center_express | 10.5\(1\)su1 |
| cisco | unified_contact_center_express | 10.5\(1\)su1es10 |
| cisco | unified_contact_center_express | 10.6\(1\) |
| cisco | unified_contact_center_express | 10.6\(1\)su1 |
| cisco | unified_contact_center_express | 10.6\(1\)su2 |
| cisco | unified_contact_center_express | 10.6\(1\)su2es04 |
| cisco | unified_contact_center_express | 10.6\(1\)su3 |
| cisco | unified_contact_center_express | 10.6\(1\)su3es01 |
| cisco | unified_contact_center_express | 10.6\(1\)su3es02 |
| cisco | unified_contact_center_express | 10.6\(1\)su3es03 |
| cisco | unified_contact_center_express | 11.0\(1\)su1 |
| cisco | unified_contact_center_express | 11.0\(1\)su1es02 |
| cisco | unified_contact_center_express | 11.0\(1\)su1es03 |
| cisco | unified_contact_center_express | 11.5\(1\)es01 |
| cisco | unified_contact_center_express | 11.5\(1\)su1 |
| cisco | unified_contact_center_express | 11.5\(1\)su1es01 |
| cisco | unified_contact_center_express | 11.5\(1\)su1es02 |
| cisco | unified_contact_center_express | 11.5\(1\)su1es03 |
| cisco | unified_contact_center_express | 11.6\(1\) |
| cisco | unified_contact_center_express | 11.6\(1\)es01 |
| cisco | unified_contact_center_express | 11.6\(1\)es02 |
| cisco | unified_contact_center_express | 11.6\(2\) |
| cisco | unified_contact_center_express | 11.6\(2\)es01 |
| cisco | unified_contact_center_express | 11.6\(2\)es02 |
| cisco | unified_contact_center_express | 11.6\(2\)es03 |
| cisco | unified_contact_center_express | 11.6\(2\)es04 |
| cisco | unified_contact_center_express | 11.6\(2\)es05 |
| cisco | unified_contact_center_express | 11.6\(2\)es06 |
| cisco | unified_contact_center_express | 11.6\(2\)es07 |
| cisco | unified_contact_center_express | 11.6\(2\)es08 |
| cisco | unified_contact_center_express | 12.0\(1\) |
| cisco | unified_contact_center_express | 12.0\(1\)es01 |
| cisco | unified_contact_center_express | 12.0\(1\)es02 |
| cisco | unified_contact_center_express | 12.0\(1\)es03 |
| cisco | unified_contact_center_express | 12.0\(1\)es04 |
| cisco | unified_contact_center_express | 12.5\(1\) |
| cisco | unified_contact_center_express | 12.5\(1\)_su01_es01 |
| cisco | unified_contact_center_express | 12.5\(1\)_su01_es02 |
| cisco | unified_contact_center_express | 12.5\(1\)_su01_es03 |
| cisco | unified_contact_center_express | 12.5\(1\)_su02_es01 |
| cisco | unified_contact_center_express | 12.5\(1\)_su02_es02 |
| cisco | unified_contact_center_express | 12.5\(1\)_su02_es03 |
| cisco | unified_contact_center_express | 12.5\(1\)_su02_es04 |
| cisco | unified_contact_center_express | 12.5\(1\)_su03_es01 |
| cisco | unified_contact_center_express | 12.5\(1\)_su03_es02 |
| cisco | unified_contact_center_express | 12.5\(1\)_su03_es03 |
| cisco | unified_contact_center_express | 12.5\(1\)_su03_es04 |
| cisco | unified_contact_center_express | 12.5\(1\)_su03_es05 |
| cisco | unified_contact_center_express | 12.5\(1\)_su03_es06 |
| cisco | unified_contact_center_express | 12.5\(1\)es01 |
| cisco | unified_contact_center_express | 12.5\(1\)es02 |
| cisco | unified_contact_center_express | 12.5\(1\)es03 |
| cisco | unified_contact_center_express | 12.5\(1\)su1 |
| cisco | unified_contact_center_express | 12.5\(1\)su2 |
| cisco | unified_contact_center_express | 12.5\(1\)su3 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-918 | The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the web-based management interface of Cisco Unified Intelligence Center and allows an unauthenticated, remote attacker to perform a server-side request forgery (SSRF) attack. It occurs due to improper input validation of specific HTTP requests, enabling the attacker to send crafted HTTP requests that cause the affected device to make arbitrary network requests on the attacker's behalf.
How can this vulnerability impact me? :
The vulnerability could allow an attacker to send arbitrary network requests from the affected device, potentially enabling them to access internal resources or services that are otherwise inaccessible, which could lead to information disclosure or further attacks within the network. However, it does not directly impact confidentiality but can impact the integrity of the system.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70