Cisco has assigned a priority rating of CVSS score of 10.0 to this vulnerability. Additionally, Cisco has not released a fixed software package for this vulnerability. As a result, there is no option to fix this vulnerability in software releases that have already been shipped. There are no workarounds that address this vulnerability. Mitigation for CVE-2019-5736 includes upgrading to at least version 10.12.18.
In the following table, Cisco provides information regarding the first fixed release for each affected Cisco product line that includes a table with the first fixed release information for each Cisco product line. Table 1--First Fixed Release for Each Cisco Product Line Product First Fixed Release Cisco Unified Contact Center Enterprise (UCCE) 10.1.2 Cisco Identity Services Engine (ISE) 10.12.18 Cisco WebEx Meetings Server (S) 10.1.3 Cisco WebEx Meetings Server (W) 10.1.3 Cisco WebEx Meetings Server (G) 10.1.3 Cisco WebEx Meetings Server (Q) 10.1.3 Cisco WebEx Meetings Server (X) 10.1.3 Cisco WebEx Meetings Server (Y) 10.1.3 Cisco WebEx Meetings Server (Z) 10.1.3 Cisco WebEx Meetings Server (M) 10.1.3 Cisco WebEx Meetings Server (N) 10.1.3 Cisco WebEx Meetings Server (O) 10

Cisco Unified Contact Center Enterprise (UCCE)

The first fixed release for this product is 10.1.2.

CVSS OVERVIEW

Cisco has assigned a priority rating of 10.0 to this vulnerability. Additionally, Cisco has not released a fixed software package for this vulnerability. As a result, there is no option to fix this vulnerability in software releases that have already been shipped. There are no workarounds that address this vulnerability. Mitigation for CVE-2019-5736 includes upgrading to at least version 10.12.18

Timeline

Published on: 04/06/2022 19:15:00 UTC
Last modified on: 04/14/2022 09:09:00 UTC

References