This document provides the installation instructions for CVP12.6(2) ES4. It also contains a list of CVP issues resolved by this engineering special. Review all installation information before installing the product. Failure to install this engineering special as described can result in inconsistent CVP behaviour.
This document contains these sections:
· About Cisco CVP (and CVP Engineering Specials)
· CVP Compatibility and Support Specifications
· CVP Engineering Special Installation Planning
· Obtaining Technical Assistance
This Engineering Special patch:
· Includes
Tomcat upgrade
· Includes JRE upgrade
· Includes
AppDynamics upgrade
· Defect Fixes
· CVP 12.6(2)
This section lists the CVP components on which you
can and cannot install this engineering special.
You can install CVP12.6(2) ES 4 on these CVP components:
· Call Server
· OAMP
· Reporting Server
·
Remote Operation
NA
Pre-Installation Steps:
1. It is mandatory to install 12.5.1 as a base and 12.6.2 FCS before installing CVP12.6(2) ES4.
2. Before installing the patch, the audio files must be backed up from the C:\Cisco\CVP\VXMLServer\Tomcat\webapps\CVP\audio folder.
3. Take backup of all the custom files, if any. The custom files are located in the lib folder of the application-specific directory in the VXML server. For example, the files for HelloWorld custom application are located in the C:\Cisco\CVP\VXMLServer\Application\Helloworld\lib folder.
Patching Unified CVP VXMLServer and CallServer:
1. Stop CVP VXMLServer service and CallServer service.
2. Run the patch installer.
3. Reboot the machine.
Patching Unified OPSConsoleServer:
1. Stop Cisco CVP OPSConsoleServer service.
2. Run the patch installer.
3. Reboot the machine.
Patching Unified CVP Reporting Server:
1. Stop CVP CallServer service.
2. Run the patch installer.
3. Reboot the machine.
Post Installation Steps:
1. Ensure that all services are up and running after the patch is installed.
2. Ensure that the audio folder is created under \Cisco\CVP\VXMLServer\Tomcat\webapps\CVP
3. Restore the backed-up audio files and the
custom files.
3. Find the installed patch in the list and select
"Remove".
This section provides a list of significant CVP
defects resolved by this engineering special.
Resolved Defects in CVP12.6(2) ES4
Identifier |
Headline |
CSCwf27113 |
Evaluation
of CVE-2023-24998 against Cisco Voice Portal (CVP) |
CSCwf25557 |
SPOG
location update isn't correct. |
CSCwf42047 |
Malicious
user can upload executable files to CVP OAMP file to log messages |
CSCwf04115 |
Reporting
Server failover due to SQL exception |
CSCwe95138 |
Reimage.bat
does not work due to log4j classes |
CSCwe24858 |
Vulnerabilities
in jettison 1.0.1 CVE-2022-45693 and others |
CSCwe24862 |
Vulnerabilities
in zip4j 1.3.2 CVE-2018-1002202 and others |
CSCwe26060 |
Vulnerabilities
in xstream 1.4.19 CVE-2022-41966 and others |
CSCwc30370 |
CIAM:
jackson-databind 2.12.2 |
CSCwe25137 |
Vulnerabilities
in commons-io 2.5 CVE-2021-29425 |
CSCwf85199 |
Vulnerabilities
for AppD Client JDK on CVP |
CSCwf41120 |
Cloud
Connect 12.6(2) Does Not Correctly Respect Certificate Chain |
Software Upgrades in CVP12.6(2) ES4
Software Component |
Old version |
New version |
AppDynamics
Machineagent |
22.10.0.3495 |
23.6.0.3657 |
AppDynamics
AppServerAgent |
22.10.0.34344 |
1.8-23.6.0.34839 |
Jre |
1.8.0.342 |
1.8.0.372 |
Tomcat |
9.0.68 |
9.0.76 |
Commons-fileupload |
1.4 |
1.5 |
Zip4j |
1.3.2 |
2.11.5 |
Xstream |
1.4.19 |
1.4.20 |
Jackson-databind |
2.13.3 |
2.14.2 |
Commons-io |
2.4 |
2.11.0 |
You can access current Cisco documentation on the Support pages at the following sites:
· https://www.cisco.com
· https://www-china.cisco.com
· https://www-europe.cisco.com
To provide comments about this document, send an email message to the following address:
contactcenterproducts_docfeedback@cisco.com
We appreciate your comments.
Cisco.com is a starting point for all technical assistance. Customers and partners can obtain documentation, troubleshooting tips, and sample configurations from online tools. For Cisco.com registered users, additional troubleshooting tools are available from the TAC site.
Cisco.com provides a broad range of features and services to help customers and partners streamline business processes and improve productivity. Through Cisco.com, you can find information about Cisco and our networking solutions, services, and programs. You can also resolve technical issues with online technical support and download software packages. Valuable online skill assessment, training, and certification programs are also available.
Customers and partners can self-register on
Cisco.com to obtain additional personalized information and services.
Registered users can order products, check on the status of an order, access
technical support, and view benefits specific to their relationships with
Cisco.
The Cisco TAC site is available to all customers who
need technical assistance with a Cisco product or technology that is under
warranty or covered by a maintenance contract.
If you have a priority level 3 (P3) or priority level 4 (P4) problem, contact TAC by going to https://www.cisco.com/c/en/us/support/index.html.
P3 and P4 level problems are defined as follows:
· P3--Your network performance is degraded. Network functionality is noticeably impaired, but most business operations continue.
· P4--You need information or assistance on Cisco product capabilities, product installation, or basic product configuration.
In each of the above cases, use the Cisco TAC site to quickly find answers to your questions.
If you cannot resolve your technical issue by using
the TAC online resources, Cisco.com registered users can open a case online by
using the TAC Case Open tool at the following site: https://mycase.cloudapps.cisco.com/create/start/
If you have a priority level 1(P1) or priority level 2 (P2) problem, contact TAC by telephone and immediately open a case. To obtain a directory of toll-free numbers for your country, go to the following sites:
· Enterprise and Service Provider Products--https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html
· Small Business Products--https://www.cisco.com/c/en/us/support/web/tsd-cisco-small-business-support-center-contacts.html
P1 and P2 level problems are defined as follows:
· P1--Your production network is down, causing a critical impact to business operations if service is not restored quickly. No workaround is available.
·
P2--Your production network is severely degraded,
affecting significant aspects of your business operations. No workaround is
available.