According to its self-reported version, Cisco Unity Connection running on the report host is affected by an Arbitrary File Upload Vulnerability. Due to lack of authentication in a specific API and improper validation of user-supplied data, an unauthenticated, remote attacker can store malicious files on the system, execute arbitrary commands on the underlying operating system and elevate privileges to root. Please see the included Cisco BIDs and Cisco Security Advisory for more…Read More