CVE-2026-20059 | Cisco Unity Connection up to 15SU4 Web-based Management Interface cross site scripting (cisco-sa-unity-vulns-n2EJSbbw)

Inserito da Angelo Barbosa | Apr 15, 2026 | CVE

A vulnerability marked as problematic has been reported in Cisco Unity Connection up to 15SU4. Affected by this vulnerability is an unknown functionality of the component Web-based Management Interface. Performing a manipulation results in cross site scripting.

This vulnerability was named CVE-2026-20059. The attack may be initiated remotely. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2026-20059 | Cisco Unity Connection up to 15SU4 Web-based Management Interface cross site scripting (cisco-sa-unity-vulns-n2EJSbbw)

Post correlati

CVE-2023-37407 | IBM Aspera Orchestrator 4.0.1 Request os command injection (XFDB-260116)

CVE-2025-66520 | Foxit pdfonline Portfolio Feature cross site scripting

CVE-2025-25207 | Red Hat Connectivity Link rhcl-operator-container denial of service

CVE-2024-9059 | wproyal Royal Elementor Addons and Templates Plugin up to 1.7.1001 on WordPress cross site scripting