About this Document 

This document provides the installation instructions for CVP12.6(2) ES4. It also contains a list of CVP issues resolved by this engineering special. Review all installation information before installing the product. Failure to install this engineering special as described can result in inconsistent CVP behaviour.

This document contains these sections:

·        About Cisco CVP (and CVP Engineering Specials)

·        CVP Compatibility and Support Specifications

·        CVP Engineering Special Installation Planning

·       Installing CVP12.6(2) ES4

·        Obtaining Documentation

·        Obtaining Technical Assistance

 

About Cisco CVP (and CVP Engineering Specials) 

This Engineering Special patch:

 ·        Includes Tomcat upgrade

 ·        Includes JRE upgrade

 ·        Includes AppDynamics upgrade

·         Defect Fixes

CVP Compatibility and Support Specifications

CVP Version Support

·        CVP 12.6(2) 

 

CVP Component Support

This section lists the CVP components on which you can and cannot install this engineering special.

Supported CVP Components

You can install CVP12.6(2) ES 4 on these CVP components:

·        Call Server

·        OAMP

·        Reporting Server

·        Remote Operation


Unsupported CVP Components

NA

CVP Engineering Special Installation Planning

 

Installing CVP12.6(2) ES4

Pre-Installation Steps:

 

1. It is mandatory to install 12.5.1 as a base and 12.6.2 FCS before installing CVP12.6(2) ES4.

2. Before installing the patch, the audio files must be backed up from the C:\Cisco\CVP\VXMLServer\Tomcat\webapps\CVP\audio folder.

3. Take backup of all the custom files, if any. The custom files are located in the lib folder of the application-specific directory in the VXML server. For example, the files for HelloWorld custom application are located in the C:\Cisco\CVP\VXMLServer\Application\Helloworld\lib folder.

 

Patching Unified CVP VXMLServer and CallServer:

 

1. Stop CVP VXMLServer service and CallServer service.

2. Run the patch installer.

3. Reboot the machine.

 

Patching Unified OPSConsoleServer:

 

1. Stop Cisco CVP OPSConsoleServer service.

2. Run the patch installer.

3. Reboot the machine.

 

Patching Unified CVP Reporting Server:

 

1. Stop CVP CallServer service.

2. Run the patch installer.

3. Reboot the machine.

 

Post Installation Steps:

 

1. Ensure that all services are up and running after the patch is installed.

2. Ensure that the audio folder is created under \Cisco\CVP\VXMLServer\Tomcat\webapps\CVP

3. Restore the backed-up audio files and the custom files.

 

 

Uninstalling CVP12.6(2) ES4

1. To uninstall this patch, go to Control Panel.

2. Select "Add or Remove Programs".

3. Find the installed patch in the list and select "Remove".

 

 

Resolved Defects in this Engineering Special

This section provides a list of significant CVP defects resolved by this engineering special.

Resolved Defects in CVP12.6(2) ES4

Identifier

Headline

CSCwf27113

Evaluation of CVE-2023-24998 against Cisco Voice Portal (CVP)

CSCwf25557

SPOG location update isn't correct.

CSCwf42047

Malicious user can upload executable files to CVP OAMP file to log messages

CSCwf04115

Reporting Server failover due to SQL exception

CSCwe95138

Reimage.bat does not work due to log4j classes

CSCwe24858

Vulnerabilities in jettison 1.0.1 CVE-2022-45693 and others

CSCwe24862

 

Vulnerabilities in zip4j 1.3.2 CVE-2018-1002202 and others

CSCwe26060

Vulnerabilities in xstream 1.4.19 CVE-2022-41966 and others

CSCwc30370

CIAM: jackson-databind 2.12.2

CSCwe25137

Vulnerabilities in commons-io 2.5 CVE-2021-29425

CSCwf85199

Vulnerabilities for AppD Client JDK on CVP

CSCwf41120

Cloud Connect 12.6(2) Does Not Correctly Respect Certificate Chain

 

 Software Upgrades in CVP12.6(2) ES4

Software Component

 

Old version

 

New version

AppDynamics Machineagent

 22.10.0.3495

23.6.0.3657

AppDynamics AppServerAgent

 22.10.0.34344

1.8-23.6.0.34839

Jre

 1.8.0.342

1.8.0.372

Tomcat

 9.0.68

9.0.76

Commons-fileupload

 1.4

1.5

Zip4j

 1.3.2

2.11.5

Xstream

 1.4.19

1.4.20

Jackson-databind

 2.13.3

2.14.2

Commons-io

 2.4

2.11.0

 

Obtaining Documentation 

You can access current Cisco documentation on the Support pages at the following sites:

·        https://www.cisco.com

·        https://www-china.cisco.com

·        https://www-europe.cisco.com

 

Documentation Feedback

To provide comments about this document, send an email message to the following address:

contactcenterproducts_docfeedback@cisco.com

We appreciate your comments.

Obtaining Technical Assistance 

Cisco.com is a starting point for all technical assistance. Customers and partners can obtain documentation, troubleshooting tips, and sample configurations from online tools. For Cisco.com registered users, additional troubleshooting tools are available from the TAC site.

Cisco.com

Cisco.com provides a broad range of features and services to help customers and partners streamline business processes and improve productivity. Through Cisco.com, you can find information about Cisco and our networking solutions, services, and programs. You can also resolve technical issues with online technical support and download software packages. Valuable online skill assessment, training, and certification programs are also available.

Customers and partners can self-register on Cisco.com to obtain additional personalized information and services. Registered users can order products, check on the status of an order, access technical support, and view benefits specific to their relationships with Cisco.

 

Technical Assistance Center

The Cisco TAC site is available to all customers who need technical assistance with a Cisco product or technology that is under warranty or covered by a maintenance contract.

Contacting TAC by Using the Cisco TAC Site

If you have a priority level 3 (P3) or priority level 4 (P4) problem, contact TAC by going to https://www.cisco.com/c/en/us/support/index.html.

P3 and P4 level problems are defined as follows:

·        P3--Your network performance is degraded. Network functionality is noticeably impaired, but most business operations continue.

·        P4--You need information or assistance on Cisco product capabilities, product installation, or basic product configuration.

In each of the above cases, use the Cisco TAC site to quickly find answers to your questions.

If you cannot resolve your technical issue by using the TAC online resources, Cisco.com registered users can open a case online by using the TAC Case Open tool at the following site: https://mycase.cloudapps.cisco.com/create/start/

Contacting TAC by Telephone

If you have a priority level 1(P1) or priority level 2 (P2) problem, contact TAC by telephone and immediately open a case. To obtain a directory of toll-free numbers for your country, go to the following sites:

·        Enterprise and Service Provider Products--https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html

·        Small Business Products--https://www.cisco.com/c/en/us/support/web/tsd-cisco-small-business-support-center-contacts.html

P1 and P2 level problems are defined as follows:

·        P1--Your production network is down, causing a critical impact to business operations if service is not restored quickly. No workaround is available.

·        P2--Your production network is severely degraded, affecting significant aspects of your business operations. No workaround is available.