CVE-2026-20045 | Cisco Unified Communications Manager code injection (cisco-sa-voice-rce-mORhqY4b)

A vulnerability classified as critical has been found in Cisco Unified Communications Manager, Unified Communications Manager Session Management Edition, Unified Communications Manager IM & Presence Service, Unity Connection and Webex Calling Dedicated Instance. This issue affects some unknown processing. Performing a manipulation results in code injection.

This vulnerability is cataloged as CVE-2026-20045. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2026-20045 | Cisco Unified Communications Manager code injection (cisco-sa-voice-rce-mORhqY4b)

Post correlati

CVE-2024-9678 | Trellix DLP Extension 11.11.1.3 sql injection

VDB-256316 | Backdoor.Win32.Jeemp.c ESMTP Server hard-coded credentials

CVE-2024-41153 | Hitachi Energy TRO600 up to 9.2.0.0 Edge Computing UI command injection

CVE-2023-49874 | Mattermost up to 7.8.14/8.1.5/9.0.3/9.1.2/9.2.1 Task access control