Strix
26.1K

CVE-2025-20129

MEDIUMCVSS 5.4/10EPSS 0.30%

Last modified

CVE-2025-20129 is a medium-severity vulnerability rated 5.4/10 on the CVSS scale. A vulnerability in the web-based chat interface of Cisco Customer Collaboration Platform (CCP), formerly Cisco SocialMiner, could allow an unauthenticated, remote attacker to persuade users to disclose sensitive data. This vulnerability is due to improper sanitization of HTTP requests that are sent to the web-based chat interface. An attacker could exploit this vulnerability by sending crafted HTTP requests to the chat interface of a targeted user on a vulnerable server. EPSS estimates a 0.30% chance of exploitation in the next 30 days.

Description

A vulnerability in the web-based chat interface of Cisco Customer Collaboration Platform (CCP), formerly Cisco SocialMiner, could allow an unauthenticated, remote attacker to persuade users to disclose sensitive data. This vulnerability is due to improper sanitization of HTTP requests that are sent to the web-based chat interface. An attacker could exploit this vulnerability by sending crafted HTTP requests to the chat interface of a targeted user on a vulnerable server. A successful exploit could allow the attacker to redirect chat traffic to a server that is under their control, resulting in sensitive information being redirected to the attacker.

Metrics

CVSS 3.1
5.4/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

EPSS Probability
0.30%

21.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoSocialminer10.5\(1\)
CiscoSocialminer10.6\(1\)
CiscoSocialminer10.6\(2\)
CiscoSocialminer11.0\(1\)
CiscoSocialminer11.5\(1\)
CiscoSocialminer11.5\(1\)su1
CiscoSocialminer11.6\(1\)
CiscoSocialminer11.6\(2\)
CiscoSocialminer12.0\(1\)
CiscoSocialminer12.0\(1\)es02
CiscoSocialminer12.0\(1\)es03
CiscoSocialminer12.0\(1\)es04
CiscoSocialminer12.5\(1\)
CiscoSocialminer12.5\(1\)es01
CiscoSocialminer12.5\(1\)su1
CiscoSocialminer12.5\(1\)su2
CiscoSocialminer12.5\(1\)su3
CiscoUnified Contact Center Express8.5\(1\)
CiscoUnified Contact Center Express9.0\(2\)su3es04
CiscoUnified Contact Center Express10.0\(1\)su1
CiscoUnified Contact Center Express10.0\(1\)su1es04
CiscoUnified Contact Center Express10.5\(1\)
CiscoUnified Contact Center Express10.5\(1\)su1
CiscoUnified Contact Center Express10.5\(1\)su1es10
CiscoUnified Contact Center Express10.6\(1\)
CiscoUnified Contact Center Express10.6\(1\)su1
CiscoUnified Contact Center Express10.6\(1\)su2
CiscoUnified Contact Center Express10.6\(1\)su2es04
CiscoUnified Contact Center Express10.6\(1\)su3
CiscoUnified Contact Center Express10.6\(1\)su3es01
CiscoUnified Contact Center Express10.6\(1\)su3es02
CiscoUnified Contact Center Express10.6\(1\)su3es03
CiscoUnified Contact Center Express11.0\(1\)su1
CiscoUnified Contact Center Express11.0\(1\)su1es02
CiscoUnified Contact Center Express11.0\(1\)su1es03
CiscoUnified Contact Center Express11.5\(1\)es01
CiscoUnified Contact Center Express11.5\(1\)su1
CiscoUnified Contact Center Express11.5\(1\)su1es01
CiscoUnified Contact Center Express11.5\(1\)su1es02
CiscoUnified Contact Center Express11.5\(1\)su1es03
CiscoUnified Contact Center Express11.6\(1\)
CiscoUnified Contact Center Express11.6\(1\)es01
CiscoUnified Contact Center Express11.6\(1\)es02
CiscoUnified Contact Center Express11.6\(2\)
CiscoUnified Contact Center Express11.6\(2\)es01
CiscoUnified Contact Center Express11.6\(2\)es02
CiscoUnified Contact Center Express11.6\(2\)es03
CiscoUnified Contact Center Express11.6\(2\)es04
CiscoUnified Contact Center Express11.6\(2\)es05
CiscoUnified Contact Center Express11.6\(2\)es06

Showing 50 of 77 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Analyzed

Frequently Asked Questions

What is CVE-2025-20129?
A vulnerability in the web-based chat interface of Cisco Customer Collaboration Platform (CCP), formerly Cisco SocialMiner, could allow an unauthenticated, remote attacker to persuade users to disclose sensitive data. This vulnerability is due to improper sanitization of HTTP requests that are sent to the web-based chat interface. An attacker could exploit this vulnerability by sending crafted HTTP requests to the chat interface of a targeted user on a vulnerable server. A successful exploit could allow the attacker to redirect chat traffic to a server that is under their control, resulting in sensitive information being redirected to the attacker.
How severe is CVE-2025-20129?
CVE-2025-20129 has a CVSS score of 5.4/10 (MEDIUM severity). The EPSS model estimates a 0.30% probability of exploitation in the next 30 days.
How do I fix CVE-2025-20129?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2025-20129?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST