Software version: Cisco Interaction Manager (CIM) version 9.0.
- Possiblity of deleting default system queues (effects in DoS attack)
- XSS vulnerability in chat messages (from client to agent and the other way)
- Lack of data access control in agent interface (access to other agents’ reports, messages, attachments)
Technical details to be announced soon.