VDB

CVE-2026-20045

CVE-2026-20045 PUBLISHED KEV CVSS 8.199999809265137 HIGH

Une vulnérabilité a été découverte dans les produits Cisco. Elle permet à un attaquant de provoquer une exécution de code arbitraire à distance. Cisco indique que la vulnérabilité CVE-2026-20045 est activement exploitée.

EPSS 3.02% · 86.9th percentile

Risk Scores

CVSS 3.1
8.199999809265137
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
EPSS Score
3.02%
86.9th percentile

Affected Products

VendorProductVersions
CiscoUnified Communications Manager
CiscoUnified Communications Manager IM & Presence Service
ciscounity_connection12.5, 15.0
ciscounified_communications_manager_im_and_presence_service15.0, 12.5
CiscoWebex Calling Dedicated Instance
CiscoUnified Communications Manager Session Management Edition
CiscoCisco Unified Communications Manager IM and Presence Service*, 12.5(1)SU2, 12.5(1)SU3
CiscoUnity Connection
ciscounified_communications_manager15.0, 15.0, 12.5
CiscoCisco Unity Connection15SU3, 12.5(1), 12.5(1)SU2
CiscoCisco Unified Communications Manager*, 15.0.1.13010-1, 15.0.1.13012-1

Exploit Intelligence

…and 114 more exploits

Timeline

  • Jan 21, 2026 CISA KEV Added
  • Jan 21, 2026 CVE Published
  • Jan 21, 2026 PoC Published
  • Jan 21, 2026 PoC Published
  • Jan 21, 2026 PoC Published
  • Jan 21, 2026 PoC Published
  • Jan 21, 2026 PoC Published
  • Jan 21, 2026 PoC Published
  • Jan 21, 2026 PoC Published
  • Jan 21, 2026 PoC Published
  • Jan 21, 2026 PoC Published
  • Jan 21, 2026 PoC Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›