Cisco Unity Connection Arbitrary File Download Vulnerability_CVE-2026-20078

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Description

Multiple vulnerabilities in Cisco Unity Connection could allow an authenticated, remote attacker to download arbitrary files from an affected system. To exploit these vulnerabilities, the attacker must have valid administrative credentials.

These vulnerabilities are due to improper sanitization of user input to the web-based management interface. An attacker could exploit these vulnerabilities by sending a crafted HTTPS request. A successful exploit could allow the attacker to download arbitrary files from an affected system.

Basic Information

ID CVE-2026-20078

Source cisco

Published Apr 15, 2026 at 16:03

Affected Product

Vendor Cisco

Product Cisco Unity Connection

Version 12.5(1)

Affected Versions Cisco Cisco Unity Connection 12.5(1)
Cisco Cisco Unity Connection 12.5(1)SU1
Cisco Cisco Unity Connection 12.5(1)SU2
Cisco Cisco Unity Connection 12.5(1)SU3
Cisco Cisco Unity Connection 12.5(1)SU4
Cisco Cisco Unity Connection 14
Cisco Cisco Unity Connection 12.5(1)SU5
Cisco Cisco Unity Connection 14SU1
Cisco Cisco Unity Connection 12.5(1)SU6
Cisco Cisco Unity Connection 14SU2
Cisco Cisco Unity Connection 12.5(1)SU7
Cisco Cisco Unity Connection 14SU3
Cisco Cisco Unity Connection 12.5(1)SU8
Cisco Cisco Unity Connection 14SU3a
Cisco Cisco Unity Connection 12.5(1)SU8a
Cisco Cisco Unity Connection 15
Cisco Cisco Unity Connection 15SU1
Cisco Cisco Unity Connection 14SU4
Cisco Cisco Unity Connection 12.5(1)SU9
Cisco Cisco Unity Connection 15SU2
Cisco Cisco Unity Connection 15SU3
Cisco Cisco Unity Connection 14SU5

References

sec.cloudapps.cisco.com /security/center/content/CiscoSecurityAdvisory/cisco-sa-unity-file-download-RmKEVWPx

{
    "lastseen": "",
    "description": "Multiple vulnerabilities in Cisco Unity Connection could allow an authenticated, remote attacker to download arbitrary files from an affected system. To exploit these vulnerabilities, the attacker must have valid administrative credentials. \r\n\r\nThese vulnerabilities are due to improper sanitization of user input to the web-based management interface. An attacker could exploit these vulnerabilities by sending a crafted HTTPS request. A successful exploit could allow the attacker to download arbitrary files from an affected system.",
    "published": "2026-04-15T16:03:16.698Z",
    "modified": "2026-04-15T16:03:16.698Z",
    "type": "cve",
    "title": "Cisco Unity Connection Arbitrary File Download Vulnerability",
    "source": "cisco",
    "references": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-unity-file-download-RmKEVWPx",
    "id": "CVE-2026-20078",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Cisco Cisco Unity Connection 12.5(1)\nCisco Cisco Unity Connection 12.5(1)SU1\nCisco Cisco Unity Connection 12.5(1)SU2\nCisco Cisco Unity Connection 12.5(1)SU3\nCisco Cisco Unity Connection 12.5(1)SU4\nCisco Cisco Unity Connection 14\nCisco Cisco Unity Connection 12.5(1)SU5\nCisco Cisco Unity Connection 14SU1\nCisco Cisco Unity Connection 12.5(1)SU6\nCisco Cisco Unity Connection 14SU2\nCisco Cisco Unity Connection 12.5(1)SU7\nCisco Cisco Unity Connection 14SU3\nCisco Cisco Unity Connection 12.5(1)SU8\nCisco Cisco Unity Connection 14SU3a\nCisco Cisco Unity Connection 12.5(1)SU8a\nCisco Cisco Unity Connection 15\nCisco Cisco Unity Connection 15SU1\nCisco Cisco Unity Connection 14SU4\nCisco Cisco Unity Connection 12.5(1)SU9\nCisco Cisco Unity Connection 15SU2\nCisco Cisco Unity Connection 15SU3\nCisco Cisco Unity Connection 14SU5",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Cisco Unity Connection",
    "version": "12.5(1)",
    "vendor": "Cisco",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

Affected Product

References

💭 Join the Security Discussion ❌ Cancel Reply