Home

Description

Multiple vulnerabilities in Cisco Unity Connection could allow an authenticated, remote attacker to download arbitrary files from an affected system. To exploit these vulnerabilities, the attacker must have valid administrative credentials.  These vulnerabilities are due to improper sanitization of user input to the web-based management interface. An attacker could exploit these vulnerabilities by sending a crafted HTTPS request. A successful exploit could allow the attacker to download arbitrary files from an affected system.

PUBLISHED Reserved 2025-10-08 | Published 2026-04-15 | Updated 2026-04-15 | Assigner cisco




MEDIUM: 6.5CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Problem types

Relative Path Traversal

Product status

Default status
unknown

12.5(1)
affected

12.5(1)SU1
affected

12.5(1)SU2
affected

12.5(1)SU3
affected

12.5(1)SU4
affected

14
affected

12.5(1)SU5
affected

14SU1
affected

12.5(1)SU6
affected

14SU2
affected

12.5(1)SU7
affected

14SU3
affected

12.5(1)SU8
affected

14SU3a
affected

12.5(1)SU8a
affected

15
affected

15SU1
affected

14SU4
affected

12.5(1)SU9
affected

15SU2
affected

15SU3
affected

14SU5
affected

References

sec.cloudapps.cisco.com/...o-sa-unity-file-download-RmKEVWPx (cisco-sa-unity-file-download-RmKEVWPx)

cve.org (CVE-2026-20081)

nvd.nist.gov (CVE-2026-20081)

Download JSON