{“lastseen”:””,”description”:”A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unified Communications Manager IM \\u0026amp; Presence Service (Unified CM IM\\u0026amp;P), Cisco Unity Connection, and Cisco Webex Calling Dedicated Instance could allow an unauthenticated, remote attacker\\u0026nbsp;to execute arbitrary commands on the underlying operating system of an affected device.\\u0026nbsp;\\r\\n\\r\\nThis vulnerability is due to improper validation of user-supplied input in HTTP requests. An attacker could exploit this vulnerability by sending a sequence of crafted HTTP requests to the web-based management interface of an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root.\\r\\nNote: Cisco has assigned this security advisory a Security Impact Rating (SIR) of Critical rather than High as the score indicates. The reason is that exploitation of this vulnerability could result in an attacker elevating privileges to root.”,”published”:”2026-01-21T16:26:20.312Z”,”modified”:”2026-01-21T16:26:20.312Z”,”type”:”cve”,”title”:”Cisco Unified Communications Products Remote Code Execution Vulnerability”,”source”:”cisco”,”references”:”https:\/\/sec.cloudapps.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-voice-rce-mORhqY4b”,”id”:”CVE-2026-20045″,”bulletinFamily”:””,”cwe”:null,”cvelist”:null,”sourceData”:”Cisco Cisco Unified Communications Manager 12.5(1)SU2\\nCisco Cisco Unified Communications Manager 12.5(1)SU1\\nCisco Cisco Unified Communications Manager 12.5(1)\\nCisco Cisco Unified Communications Manager 12.5(1)SU3\\nCisco Cisco Unified Communications Manager 12.5(1)SU4\\nCisco Cisco Unified Communications Manager 14\\nCisco Cisco Unified Communications Manager 12.5(1)SU5\\nCisco Cisco Unified Communications Manager 14SU1\\nCisco Cisco Unified Communications Manager 12.5(1)SU6\\nCisco Cisco Unified Communications Manager 14SU2\\nCisco Cisco Unified Communications Manager 12.5(1)SU7\\nCisco Cisco Unified Communications Manager 12.5(1)SU7a\\nCisco Cisco Unified Communications Manager 14SU3\\nCisco Cisco Unified Communications Manager 12.5(1)SU8\\nCisco Cisco Unified Communications Manager 12.5(1)SU8a\\nCisco Cisco Unified Communications Manager 15\\nCisco Cisco Unified Communications Manager 15SU1\\nCisco Cisco Unified Communications Manager 14SU4\\nCisco Cisco Unified Communications Manager 14SU4a\\nCisco Cisco Unified Communications Manager 15SU1a\\nCisco Cisco Unified Communications Manager 12.5(1)SU9\\nCisco Cisco Unified Communications Manager 15SU2\\nCisco Cisco Unified Communications Manager 15.0.1.13010-1\\nCisco Cisco Unified Communications Manager 15.0.1.13011-1\\nCisco Cisco Unified Communications Manager 15.0.1.13012-1\\nCisco Cisco Unified Communications Manager 15.0.1.13013-1\\nCisco Cisco Unified Communications Manager 15.0.1.13014-1\\nCisco Cisco Unified Communications Manager 15.0.1.13015-1\\nCisco Cisco Unified Communications Manager 15.0.1.13016-1\\nCisco Cisco Unified Communications Manager 15.0.1.13017-1\\nCisco Cisco Unified Communications Manager 15SU3a\\nCisco Cisco Unified Communications Manager IM and Presence Service 12.5(1)\\nCisco Cisco Unified Communications Manager IM and Presence Service 12.5(1)SU1\\nCisco Cisco Unified Communications Manager IM and Presence Service 12.5(1)SU2\\nCisco Cisco Unified Communications Manager IM and Presence Service 12.5(1)SU3\\nCisco Cisco Unified Communications Manager IM and Presence Service 12.5(1)SU4\\nCisco Cisco Unified Communications Manager IM and Presence Service 14\\nCisco Cisco Unified Communications Manager IM and Presence Service 12.5(1)SU5\\nCisco Cisco Unified Communications Manager IM and Presence Service 14SU1\\nCisco Cisco Unified Communications Manager IM and Presence Service 12.5(1)SU6\\nCisco Cisco Unified Communications Manager IM and Presence Service 14SU2\\nCisco Cisco Unified Communications Manager IM and Presence Service 14SU2a\\nCisco Cisco Unified Communications Manager IM and Presence Service 12.5(1)SU7\\nCisco Cisco Unified Communications Manager IM and Presence Service 14SU3\\nCisco Cisco Unified Communications Manager IM and Presence Service 12.5(1)SU8\\nCisco Cisco Unified Communications Manager IM and Presence Service 15\\nCisco Cisco Unified Communications Manager IM and Presence Service 15SU1\\nCisco Cisco Unified Communications Manager IM and Presence Service 14SU4\\nCisco Cisco Unified Communications Manager IM and Presence Service 12.5(1)SU9\\nCisco Cisco Unified Communications Manager IM and Presence Service 15SU2\\nCisco Cisco Unified Communications Manager IM and Presence Service 15SU3\\nCisco Cisco Unity Connection 12.5(1)\\nCisco Cisco Unity Connection 12.5(1)SU1\\nCisco Cisco Unity Connection 12.5(1)SU2\\nCisco Cisco Unity Connection 12.5(1)SU3\\nCisco Cisco Unity Connection 12.5(1)SU4\\nCisco Cisco Unity Connection 14\\nCisco Cisco Unity Connection 12.5(1)SU5\\nCisco Cisco Unity Connection 14SU1\\nCisco Cisco Unity Connection 12.5(1)SU6\\nCisco Cisco Unity Connection 14SU2\\nCisco Cisco Unity Connection 12.5(1)SU7\\nCisco Cisco Unity Connection 14SU3\\nCisco Cisco Unity Connection 12.5(1)SU8\\nCisco Cisco Unity Connection 14SU3a\\nCisco Cisco Unity Connection 12.5(1)SU8a\\nCisco Cisco Unity Connection 15\\nCisco Cisco Unity Connection 15SU1\\nCisco Cisco Unity Connection 14SU4\\nCisco Cisco Unity Connection 12.5(1)SU9\\nCisco Cisco Unity Connection 15SU2\\nCisco Cisco Unity Connection 15SU3″,”sourceHref”:””,”cvss”:{“score”:8.2,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:L\/A:N”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Cisco Unified Communications Manager”,”version”:”12.5(1)SU2″,”vendor”:”Cisco”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unified Communications Manager IM \\u0026amp;…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,77,12,15,13,7,11,5],"class_list":["post-36665","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-82","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n