Cisco Family Security Update Advisory (CVE-2026-20045)

Jan 23 2026

Overview

Cisco has released a security update that fixes vulnerabilities in a family of products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2026-20045

Unified CM, Unified CM IM&P, Unified CM SME, Webex Calling Dedicated Instance Version: 12.5
Unified CM, Unified CM IM&P, Unified CM SME, Webex Calling Dedicated Instance Version: 14
Unified CM, Unified CM IM&P, Unified CM SME, Webex Calling Dedicated Instance Version: 15
Unity Connection version: 12.5
Unity Connection version: 14
Unity Connection version: 15

Resolved Vulnerabilities

Remote code execution vulnerability in Cisco Unified Communications products (CVE-2026-20045)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2026-20045

Unified CM, Unified CM IM&P, Unified CM SME, Webex Calling Dedicated Instance versions: Migrate to a fixed release
Unified CM, Unified CM IM&P, Unified CM SME, Webex Calling Dedicated Instance version: 14U5 or apply patch files
Unified CM, Unified CM IM&P, Unified CM SME, Webex Calling Dedicated Instance version: 15SU4 (expected March 2026 release) or apply patch file
Unity Connection version: Migrate to a modified release
Unity Connection version: 14SU5 or apply patch file
Unity Connection version: 15SU4 (expected March 2026 release) or apply the patch file

References

[1] Cisco Unified Communications Products Remote Code Execution Vulnerability
https:// sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-voice-rce-mORhqY4b

Cisco Family Security Update Advisory (CVE-2026-20045)

TP-Link Product Security Update Advisory (CVE-2026-0629)

GitLab Product Security Update Advisory

Tags:

TP-Link Product Security Update Advisory (CVE-2026-0629)

GitLab Product Security Update Advisory