{"cve_id":"CVE-2026-20045","summary":"A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unified Communications Manager IM &amp; Presence Service (Unified CM IM&amp;P), Cisco Unity Connection, and Cisco Webex Calling Dedicated Instance could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device.&nbsp;\r\n\r\nThis vulnerability is due to improper validation of user-supplied input in HTTP requests. An attacker could exploit this vulnerability by sending a sequence of crafted HTTP requests to the web-based management interface of an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root.&nbsp;\r\nNote: Cisco has assigned this security advisory a Security Impact Rating (SIR) of Critical rather than High as the score indicates. The reason is that exploitation of this vulnerability could result in an attacker elevating privileges to root.","cvss":8.2,"cvss_version":3.0,"cvss_v2":null,"cvss_v3":8.2,"epss":0.0134,"ranking_epss":0.79977,"kev":true,"propose_action":"Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P), Cisco Unity Connection, and Cisco Webex Calling Dedicated Instance contain a code injection vulnerability that could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root.","ransomware_campaign":"Unknown","references":["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-voice-rce-mORhqY4b","https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-20045"],"published_time":"2026-01-21T17:16:08","cpes":["cpe:2.3:a:cisco:unified_communications_manager:12.5","cpe:2.3:a:cisco:unified_communications_manager:12.5(1)","cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su1","cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su2","cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su3","cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su4","cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su5","cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su6","cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su7","cpe:2.3:a:cisco:unified_communications_manager:12.5(1.10000.22)","cpe:2.3:a:cisco:unified_communications_manager:12.5.1su8","cpe:2.3:a:cisco:unified_communications_manager:12.6","cpe:2.3:a:cisco:unified_communications_manager:12.6(1)","cpe:2.3:a:cisco:unified_communications_manager:14.0","cpe:2.3:a:cisco:unified_communications_manager:14.0(1.10000.20)","cpe:2.3:a:cisco:unified_communications_manager:14.0su2a","cpe:2.3:a:cisco:unified_communications_manager:14su1","cpe:2.3:a:cisco:unified_communications_manager:14su2","cpe:2.3:a:cisco:unified_communications_manager:14su3","cpe:2.3:a:cisco:unified_communications_manager:14su4a","cpe:2.3:a:cisco:unified_communications_manager:15.0","cpe:2.3:a:cisco:unified_communications_manager:15.0.1.13010-1","cpe:2.3:a:cisco:unified_communications_manager:15.0.1.13011-1","cpe:2.3:a:cisco:unified_communications_manager:15.0.1.13012-1","cpe:2.3:a:cisco:unified_communications_manager:15.0.1.13013-1","cpe:2.3:a:cisco:unified_communications_manager:15.0.1.13014-1","cpe:2.3:a:cisco:unified_communications_manager:15.0.1.13015-1","cpe:2.3:a:cisco:unified_communications_manager:15.0.1.13016-1","cpe:2.3:a:cisco:unified_communications_manager:15.0.1.13017-1","cpe:2.3:a:cisco:unified_communications_manager:15su3a","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su1","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su2","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su3","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su4","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su5","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su6","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su7","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su8","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su9","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5su8","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:14.0","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:14.0(1)","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:14.0su1","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:14.0su2","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:14.0su2a","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:14.0su4","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:14su","cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:15su3a","cpe:2.3:a:cisco:unity_connection:12.5","cpe:2.3:a:cisco:unity_connection:12.5(1)","cpe:2.3:a:cisco:unity_connection:12.5(1)su1","cpe:2.3:a:cisco:unity_connection:12.5(1)su2","cpe:2.3:a:cisco:unity_connection:12.5(1)su3","cpe:2.3:a:cisco:unity_connection:12.5(1)su4","cpe:2.3:a:cisco:unity_connection:12.5(1)su5","cpe:2.3:a:cisco:unity_connection:12.5(1)su6","cpe:2.3:a:cisco:unity_connection:12.5(1)su7","cpe:2.3:a:cisco:unity_connection:12.5(1)su8","cpe:2.3:a:cisco:unity_connection:12.5(1)su8a","cpe:2.3:a:cisco:unity_connection:12.5(1)su9","cpe:2.3:a:cisco:unity_connection:12.5su2","cpe:2.3:a:cisco:unity_connection:14.0","cpe:2.3:a:cisco:unity_connection:14su1","cpe:2.3:a:cisco:unity_connection:14su2","cpe:2.3:a:cisco:unity_connection:14su3","cpe:2.3:a:cisco:unity_connection:14su3a","cpe:2.3:a:cisco:unity_connection:14su4","cpe:2.3:a:cisco:unity_connection:15.0","cpe:2.3:a:cisco:unity_connection:15su1","cpe:2.3:a:cisco:unity_connection:15su2","cpe:2.3:a:cisco:unity_connection:15su3"]}