CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-20278

A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device as the root user. This vulnerability is due to improper validation of user-supplied command arguments. An attacker could exploit this vulnerability by executing crafted commands on the CLI of an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system of an affected device as the root user. To exploit this vulnerability, the attacker must have valid administrative credentials.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.8%

CVSS Severity

CVSS v3 Score 6.0

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vos-command-inject-65s2UCYy

Products affected by CVE-2025-20278

Cisco » Finesse » Version: 10.5(1)

cpe:2.3:a:cisco:finesse:10.5(1)
Cisco » Finesse » Version: 10.5(1)_es1

cpe:2.3:a:cisco:finesse:10.5(1)_es1
Cisco » Finesse » Version: 10.5(1)_es10

cpe:2.3:a:cisco:finesse:10.5(1)_es10
Cisco » Finesse » Version: 10.5(1)_es2

cpe:2.3:a:cisco:finesse:10.5(1)_es2
Cisco » Finesse » Version: 10.5(1)_es3

cpe:2.3:a:cisco:finesse:10.5(1)_es3
Cisco » Finesse » Version: 10.5(1)_es4

cpe:2.3:a:cisco:finesse:10.5(1)_es4
Cisco » Finesse » Version: 10.5(1)_es5

cpe:2.3:a:cisco:finesse:10.5(1)_es5
Cisco » Finesse » Version: 10.5(1)_es6

cpe:2.3:a:cisco:finesse:10.5(1)_es6
Cisco » Finesse » Version: 10.5(1)_es7

cpe:2.3:a:cisco:finesse:10.5(1)_es7
Cisco » Finesse » Version: 10.5(1)_es8

cpe:2.3:a:cisco:finesse:10.5(1)_es8
Cisco » Finesse » Version: 10.5(1)_es9

cpe:2.3:a:cisco:finesse:10.5(1)_es9
Cisco » Finesse » Version: 11.0(1)

cpe:2.3:a:cisco:finesse:11.0(1)
Cisco » Finesse » Version: 11.5(1)

cpe:2.3:a:cisco:finesse:11.5(1)
Cisco » Finesse » Version: 11.6(1)

cpe:2.3:a:cisco:finesse:11.6(1)
Cisco » Finesse » Version: 11.6(1)_fips

cpe:2.3:a:cisco:finesse:11.6(1)_fips
Cisco » Finesse » Version: 12.0(1)

cpe:2.3:a:cisco:finesse:12.0(1)
Cisco » Finesse » Version: 12.5(1)

cpe:2.3:a:cisco:finesse:12.5(1)
Cisco » Finesse » Version: 12.5(2)

cpe:2.3:a:cisco:finesse:12.5(2)
Cisco » Finesse » Version: 12.6(1)

cpe:2.3:a:cisco:finesse:12.6(1)
Cisco » Finesse » Version: 12.6(2)

cpe:2.3:a:cisco:finesse:12.6(2)
Cisco » Socialminer » Version: 10.5(1)

cpe:2.3:a:cisco:socialminer:10.5(1)
Cisco » Socialminer » Version: 10.6(1)

cpe:2.3:a:cisco:socialminer:10.6(1)
Cisco » Socialminer » Version: 10.6(2)

cpe:2.3:a:cisco:socialminer:10.6(2)
Cisco » Socialminer » Version: 11.0(1)

cpe:2.3:a:cisco:socialminer:11.0(1)
Cisco » Socialminer » Version: 11.5(1)

cpe:2.3:a:cisco:socialminer:11.5(1)
Cisco » Socialminer » Version: 11.5(1)su1

cpe:2.3:a:cisco:socialminer:11.5(1)su1
Cisco » Socialminer » Version: 11.6(1)

cpe:2.3:a:cisco:socialminer:11.6(1)
Cisco » Socialminer » Version: 11.6(2)

cpe:2.3:a:cisco:socialminer:11.6(2)
Cisco » Socialminer » Version: 12.0(1)

cpe:2.3:a:cisco:socialminer:12.0(1)
Cisco » Socialminer » Version: 12.0(1)es02

cpe:2.3:a:cisco:socialminer:12.0(1)es02
Cisco » Socialminer » Version: 12.0(1)es03

cpe:2.3:a:cisco:socialminer:12.0(1)es03
Cisco » Socialminer » Version: 12.0(1)es04

cpe:2.3:a:cisco:socialminer:12.0(1)es04
Cisco » Socialminer » Version: 12.5(1)

cpe:2.3:a:cisco:socialminer:12.5(1)
Cisco » Socialminer » Version: 12.5(1)es01

cpe:2.3:a:cisco:socialminer:12.5(1)es01
Cisco » Socialminer » Version: 12.5(1)su1

cpe:2.3:a:cisco:socialminer:12.5(1)su1
Cisco » Socialminer » Version: 12.5(1)su2

cpe:2.3:a:cisco:socialminer:12.5(1)su2
Cisco » Socialminer » Version: 12.5(1)su3

cpe:2.3:a:cisco:socialminer:12.5(1)su3
Cisco » Unified Communications Manager » Version: 12.5(1)

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)
Cisco » Unified Communications Manager » Version: 12.5(1)su1

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su1
Cisco » Unified Communications Manager » Version: 12.5(1)su2

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su2
Cisco » Unified Communications Manager » Version: 12.5(1)su3

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su3
Cisco » Unified Communications Manager » Version: 12.5(1)su4

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su4
Cisco » Unified Communications Manager » Version: 12.5(1)su5

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su5
Cisco » Unified Communications Manager » Version: 12.5(1)su6

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su6
Cisco » Unified Communications Manager » Version: 12.5(1)su7

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su7
Cisco » Unified Communications Manager » Version: 12.5(1)su7a

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su7a
Cisco » Unified Communications Manager » Version: 12.5(1)su8

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su8
Cisco » Unified Communications Manager » Version: 12.5(1)su8a

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su8a
Cisco » Unified Communications Manager » Version: 12.5(1)su9

cpe:2.3:a:cisco:unified_communications_manager:12.5(1)su9
Cisco » Unified Communications Manager Im And Presence Service » Version: 12.5(1)

cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)
Cisco » Unified Communications Manager Im And Presence Service » Version: 12.5(1)su1

cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su1
Cisco » Unified Communications Manager Im And Presence Service » Version: 12.5(1)su2

cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su2
Cisco » Unified Communications Manager Im And Presence Service » Version: 12.5(1)su3

cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su3
Cisco » Unified Communications Manager Im And Presence Service » Version: 12.5(1)su4

cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su4
Cisco » Unified Communications Manager Im And Presence Service » Version: 12.5(1)su5

cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su5
Cisco » Unified Communications Manager Im And Presence Service » Version: 12.5(1)su6

cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su6
Cisco » Unified Communications Manager Im And Presence Service » Version: 12.5(1)su7

cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su7
Cisco » Unified Communications Manager Im And Presence Service » Version: 12.5(1)su8

cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su8
Cisco » Unified Communications Manager Im And Presence Service » Version: 12.5(1)su9

cpe:2.3:a:cisco:unified_communications_manager_im_and_presence_service:12.5(1)su9
Cisco » Unified Contact Center Express » Version: 10.0(1)su1

cpe:2.3:a:cisco:unified_contact_center_express:10.0(1)su1
Cisco » Unified Contact Center Express » Version: 10.0(1)su1es04

cpe:2.3:a:cisco:unified_contact_center_express:10.0(1)su1es04
Cisco » Unified Contact Center Express » Version: 10.5(1)

cpe:2.3:a:cisco:unified_contact_center_express:10.5(1)
Cisco » Unified Contact Center Express » Version: 10.5(1)su1

cpe:2.3:a:cisco:unified_contact_center_express:10.5(1)su1
Cisco » Unified Contact Center Express » Version: 10.5(1)su1es10

cpe:2.3:a:cisco:unified_contact_center_express:10.5(1)su1es10
Cisco » Unified Contact Center Express » Version: 10.6(1)

cpe:2.3:a:cisco:unified_contact_center_express:10.6(1)
Cisco » Unified Contact Center Express » Version: 10.6(1)su1

cpe:2.3:a:cisco:unified_contact_center_express:10.6(1)su1
Cisco » Unified Contact Center Express » Version: 10.6(1)su2

cpe:2.3:a:cisco:unified_contact_center_express:10.6(1)su2
Cisco » Unified Contact Center Express » Version: 10.6(1)su2es04

cpe:2.3:a:cisco:unified_contact_center_express:10.6(1)su2es04
Cisco » Unified Contact Center Express » Version: 10.6(1)su3

cpe:2.3:a:cisco:unified_contact_center_express:10.6(1)su3
Cisco » Unified Contact Center Express » Version: 10.6(1)su3es01

cpe:2.3:a:cisco:unified_contact_center_express:10.6(1)su3es01
Cisco » Unified Contact Center Express » Version: 10.6(1)su3es02

cpe:2.3:a:cisco:unified_contact_center_express:10.6(1)su3es02
Cisco » Unified Contact Center Express » Version: 10.6(1)su3es03

cpe:2.3:a:cisco:unified_contact_center_express:10.6(1)su3es03
Cisco » Unified Contact Center Express » Version: 11.0(1)su1

cpe:2.3:a:cisco:unified_contact_center_express:11.0(1)su1
Cisco » Unified Contact Center Express » Version: 11.0(1)su1es02

cpe:2.3:a:cisco:unified_contact_center_express:11.0(1)su1es02
Cisco » Unified Contact Center Express » Version: 11.0(1)su1es03

cpe:2.3:a:cisco:unified_contact_center_express:11.0(1)su1es03
Cisco » Unified Contact Center Express » Version: 11.5(1)es01

cpe:2.3:a:cisco:unified_contact_center_express:11.5(1)es01
Cisco » Unified Contact Center Express » Version: 11.5(1)su1

cpe:2.3:a:cisco:unified_contact_center_express:11.5(1)su1
Cisco » Unified Contact Center Express » Version: 11.5(1)su1es01

cpe:2.3:a:cisco:unified_contact_center_express:11.5(1)su1es01
Cisco » Unified Contact Center Express » Version: 11.5(1)su1es02

cpe:2.3:a:cisco:unified_contact_center_express:11.5(1)su1es02
Cisco » Unified Contact Center Express » Version: 11.5(1)su1es03

cpe:2.3:a:cisco:unified_contact_center_express:11.5(1)su1es03
Cisco » Unified Contact Center Express » Version: 11.6(1)

cpe:2.3:a:cisco:unified_contact_center_express:11.6(1)
Cisco » Unified Contact Center Express » Version: 11.6(1)es01

cpe:2.3:a:cisco:unified_contact_center_express:11.6(1)es01
Cisco » Unified Contact Center Express » Version: 11.6(1)es02

cpe:2.3:a:cisco:unified_contact_center_express:11.6(1)es02
Cisco » Unified Contact Center Express » Version: 11.6(2)

cpe:2.3:a:cisco:unified_contact_center_express:11.6(2)
Cisco » Unified Contact Center Express » Version: 11.6(2)es01

cpe:2.3:a:cisco:unified_contact_center_express:11.6(2)es01
Cisco » Unified Contact Center Express » Version: 11.6(2)es02

cpe:2.3:a:cisco:unified_contact_center_express:11.6(2)es02
Cisco » Unified Contact Center Express » Version: 11.6(2)es03

cpe:2.3:a:cisco:unified_contact_center_express:11.6(2)es03
Cisco » Unified Contact Center Express » Version: 11.6(2)es04

cpe:2.3:a:cisco:unified_contact_center_express:11.6(2)es04
Cisco » Unified Contact Center Express » Version: 11.6(2)es05

cpe:2.3:a:cisco:unified_contact_center_express:11.6(2)es05
Cisco » Unified Contact Center Express » Version: 11.6(2)es06

cpe:2.3:a:cisco:unified_contact_center_express:11.6(2)es06
Cisco » Unified Contact Center Express » Version: 11.6(2)es07

cpe:2.3:a:cisco:unified_contact_center_express:11.6(2)es07
Cisco » Unified Contact Center Express » Version: 11.6(2)es08

cpe:2.3:a:cisco:unified_contact_center_express:11.6(2)es08
Cisco » Unified Contact Center Express » Version: 12.0(1)

cpe:2.3:a:cisco:unified_contact_center_express:12.0(1)
Cisco » Unified Contact Center Express » Version: 12.0(1)es01

cpe:2.3:a:cisco:unified_contact_center_express:12.0(1)es01
Cisco » Unified Contact Center Express » Version: 12.0(1)es02

cpe:2.3:a:cisco:unified_contact_center_express:12.0(1)es02
Cisco » Unified Contact Center Express » Version: 12.0(1)es03

cpe:2.3:a:cisco:unified_contact_center_express:12.0(1)es03
Cisco » Unified Contact Center Express » Version: 12.0(1)es04

cpe:2.3:a:cisco:unified_contact_center_express:12.0(1)es04
Cisco » Unified Contact Center Express » Version: 12.5(1)

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)
Cisco » Unified Contact Center Express » Version: 12.5(1)_su01_es01

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su01_es01
Cisco » Unified Contact Center Express » Version: 12.5(1)_su01_es02

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su01_es02
Cisco » Unified Contact Center Express » Version: 12.5(1)_su01_es03

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su01_es03
Cisco » Unified Contact Center Express » Version: 12.5(1)_su02_es01

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su02_es01
Cisco » Unified Contact Center Express » Version: 12.5(1)_su02_es02

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su02_es02
Cisco » Unified Contact Center Express » Version: 12.5(1)_su02_es03

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su02_es03
Cisco » Unified Contact Center Express » Version: 12.5(1)_su02_es04

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su02_es04
Cisco » Unified Contact Center Express » Version: 12.5(1)_su03_es01

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su03_es01
Cisco » Unified Contact Center Express » Version: 12.5(1)_su03_es02

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su03_es02
Cisco » Unified Contact Center Express » Version: 12.5(1)_su03_es03

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su03_es03
Cisco » Unified Contact Center Express » Version: 12.5(1)_su03_es04

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su03_es04
Cisco » Unified Contact Center Express » Version: 12.5(1)_su03_es05

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su03_es05
Cisco » Unified Contact Center Express » Version: 12.5(1)_su03_es06

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)_su03_es06
Cisco » Unified Contact Center Express » Version: 12.5(1)es01

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)es01
Cisco » Unified Contact Center Express » Version: 12.5(1)es02

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)es02
Cisco » Unified Contact Center Express » Version: 12.5(1)es03

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)es03
Cisco » Unified Contact Center Express » Version: 12.5(1)su1

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)su1
Cisco » Unified Contact Center Express » Version: 12.5(1)su2

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)su2
Cisco » Unified Contact Center Express » Version: 12.5(1)su3

cpe:2.3:a:cisco:unified_contact_center_express:12.5(1)su3
Cisco » Unified Contact Center Express » Version: 8.5(1)

cpe:2.3:a:cisco:unified_contact_center_express:8.5(1)
Cisco » Unified Contact Center Express » Version: 9.0(2)su3es04

cpe:2.3:a:cisco:unified_contact_center_express:9.0(2)su3es04
Cisco » Unified Intelligence Center » Version: N/A

cpe:2.3:a:cisco:unified_intelligence_center:-
Cisco » Unified Intelligence Center » Version: 10.0(1)

cpe:2.3:a:cisco:unified_intelligence_center:10.0(1)
Cisco » Unified Intelligence Center » Version: 10.5(1)

cpe:2.3:a:cisco:unified_intelligence_center:10.5(1)
Cisco » Unified Intelligence Center » Version: 10.6(1)

cpe:2.3:a:cisco:unified_intelligence_center:10.6(1)
Cisco » Unified Intelligence Center » Version: 11.0(1)

cpe:2.3:a:cisco:unified_intelligence_center:11.0(1)
Cisco » Unified Intelligence Center » Version: 11.0(1)es10

cpe:2.3:a:cisco:unified_intelligence_center:11.0(1)es10
Cisco » Unified Intelligence Center » Version: 11.0(2)

cpe:2.3:a:cisco:unified_intelligence_center:11.0(2)
Cisco » Unified Intelligence Center » Version: 11.0(3)

cpe:2.3:a:cisco:unified_intelligence_center:11.0(3)
Cisco » Unified Intelligence Center » Version: 11.5(1)

cpe:2.3:a:cisco:unified_intelligence_center:11.5(1)
Cisco » Unified Intelligence Center » Version: 11.6

cpe:2.3:a:cisco:unified_intelligence_center:11.6
Cisco » Unified Intelligence Center » Version: 11.6(1)

cpe:2.3:a:cisco:unified_intelligence_center:11.6(1)
Cisco » Unified Intelligence Center » Version: 12.0(1)

cpe:2.3:a:cisco:unified_intelligence_center:12.0(1)
Cisco » Unified Intelligence Center » Version: 12.5(1)

cpe:2.3:a:cisco:unified_intelligence_center:12.5(1)
Cisco » Unified Intelligence Center » Version: 12.5(1)_es02

cpe:2.3:a:cisco:unified_intelligence_center:12.5(1)_es02
Cisco » Unified Intelligence Center » Version: 12.5(1)_es03

cpe:2.3:a:cisco:unified_intelligence_center:12.5(1)_es03
Cisco » Unified Intelligence Center » Version: 12.5(1)su

cpe:2.3:a:cisco:unified_intelligence_center:12.5(1)su
Cisco » Unified Intelligence Center » Version: 12.6(1)

cpe:2.3:a:cisco:unified_intelligence_center:12.6(1)
Cisco » Unified Intelligence Center » Version: 12.6(1)_es05_et

cpe:2.3:a:cisco:unified_intelligence_center:12.6(1)_es05_et
Cisco » Unified Intelligence Center » Version: 12.6(1)_es06

cpe:2.3:a:cisco:unified_intelligence_center:12.6(1)_es06
Cisco » Unified Intelligence Center » Version: 12.6(1)_es08

cpe:2.3:a:cisco:unified_intelligence_center:12.6(1)_es08
Cisco » Unified Intelligence Center » Version: 12.6(1)_et

cpe:2.3:a:cisco:unified_intelligence_center:12.6(1)_et
Cisco » Unified Intelligence Center » Version: 12.6(2)

cpe:2.3:a:cisco:unified_intelligence_center:12.6(2)
Cisco » Unified Intelligence Center » Version: 8.5.4

cpe:2.3:a:cisco:unified_intelligence_center:8.5.4
Cisco » Unified Intelligence Center » Version: 9.0(2)

cpe:2.3:a:cisco:unified_intelligence_center:9.0(2)
Cisco » Unified Intelligence Center » Version: 9.1(1)

cpe:2.3:a:cisco:unified_intelligence_center:9.1(1)
Cisco » Unified Intelligence Center » Version: 9.5(1)

cpe:2.3:a:cisco:unified_intelligence_center:9.5(1)
Cisco » Unity Connection » Version: 12.5(1)

cpe:2.3:a:cisco:unity_connection:12.5(1)
Cisco » Unity Connection » Version: 12.5(1)su1

cpe:2.3:a:cisco:unity_connection:12.5(1)su1
Cisco » Unity Connection » Version: 12.5(1)su2

cpe:2.3:a:cisco:unity_connection:12.5(1)su2
Cisco » Unity Connection » Version: 12.5(1)su3

cpe:2.3:a:cisco:unity_connection:12.5(1)su3
Cisco » Unity Connection » Version: 12.5(1)su4

cpe:2.3:a:cisco:unity_connection:12.5(1)su4
Cisco » Unity Connection » Version: 12.5(1)su5

cpe:2.3:a:cisco:unity_connection:12.5(1)su5
Cisco » Unity Connection » Version: 12.5(1)su6

cpe:2.3:a:cisco:unity_connection:12.5(1)su6
Cisco » Unity Connection » Version: 12.5(1)su7

cpe:2.3:a:cisco:unity_connection:12.5(1)su7
Cisco » Unity Connection » Version: 12.5(1)su8

cpe:2.3:a:cisco:unity_connection:12.5(1)su8
Cisco » Unity Connection » Version: 12.5(1)su8a

cpe:2.3:a:cisco:unity_connection:12.5(1)su8a
Cisco » Unity Connection » Version: 12.5(1)su9

cpe:2.3:a:cisco:unity_connection:12.5(1)su9
Cisco » Virtualized Voice Browser » Version: 11.6

cpe:2.3:a:cisco:virtualized_voice_browser:11.6
Cisco » Virtualized Voice Browser » Version: 11.6(1)

cpe:2.3:a:cisco:virtualized_voice_browser:11.6(1)
Cisco » Virtualized Voice Browser » Version: 12.5(1)

cpe:2.3:a:cisco:virtualized_voice_browser:12.5(1)
Cisco » Virtualized Voice Browser » Version: 12.6(1)

cpe:2.3:a:cisco:virtualized_voice_browser:12.6(1)
Cisco » Virtualized Voice Browser » Version: 12.6(2)

cpe:2.3:a:cisco:virtualized_voice_browser:12.6(2)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-20278

Products

Pricing

Contact Us