A vulnerability in Cisco Prime Collaboration Provisioning Software could allow an unauthenticated, local attacker to log in to the underlying Linux operating system. A successful exploit could allow the attacker to access the underlying operating system as a low-privileged user. After low-level privileges are gained, the attacker could elevate to root privileges and take full control of the device. No other Cisco products are currently known to be affected by this vulnerability. The SIR has been set to Critical. There are no workarounds that address this vulnerability.”]
Source: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180307-cpcp