CVE-2026-20045 — Vulnetix

CVE-2026-20045 PUBLISHED KEV CVSS 8.199999809265137 HIGH

Une vulnérabilité a été découverte dans les produits Cisco. Elle permet à un attaquant de provoquer une exécution de code arbitraire à distance. Cisco indique que la vulnérabilité CVE-2026-20045 est activement exploitée.

EPSS 3.02% · 86.9th percentile

Risk Scores

CVSS 3.1

8.199999809265137

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

EPSS Score

3.02%

86.9th percentile

Affected Products

Vendor	Product	Versions
Cisco	Unified Communications Manager
Cisco	Unified Communications Manager IM & Presence Service
cisco	unity_connection	12.5, 15.0
cisco	unified_communications_manager_im_and_presence_service	15.0, 12.5
Cisco	Webex Calling Dedicated Instance
Cisco	Unified Communications Manager Session Management Edition
Cisco	Cisco Unified Communications Manager IM and Presence Service	*, 12.5(1)SU2, 12.5(1)SU3
Cisco	Unity Connection
cisco	unified_communications_manager	15.0, 15.0, 12.5
Cisco	Cisco Unity Connection	15SU3, 12.5(1), 12.5(1)SU2
Cisco	Cisco Unified Communications Manager	*, 15.0.1.13010-1, 15.0.1.13012-1

Exploit Intelligence

CIRCL seen: CVE-2026-20045 (circl-sighting)
CIRCL seen: CVE-2026-20045 (circl-sighting)
CIRCL seen: CVE-2026-20045 (circl-sighting)
CIRCL seen: CVE-2026-20045 (circl-sighting)
CIRCL seen: CVE-2026-20045 (circl-sighting)
CIRCL seen: CVE-2026-20045 (circl-sighting)
CIRCL seen: CVE-2026-20045 (circl-sighting)
CIRCL seen: CVE-2026-20045 (circl-sighting)
CIRCL seen: CVE-2026-20045 (circl-sighting)
CIRCL seen: CVE-2026-20045 (circl-sighting)

…and 114 more exploits

Timeline

Jan 21, 2026 CISA KEV Added
Jan 21, 2026 CVE Published
Jan 21, 2026 PoC Published
Jan 21, 2026 PoC Published
Jan 21, 2026 PoC Published
Jan 21, 2026 PoC Published
Jan 21, 2026 PoC Published
Jan 21, 2026 PoC Published
Jan 21, 2026 PoC Published
Jan 21, 2026 PoC Published
Jan 21, 2026 PoC Published
Jan 21, 2026 PoC Published

References

Open in Interactive Console →