Cisco Product Security Update Advisory
Overview
Cisco has released security updates that address vulnerabilities in Cisco products. users of affected products are advised to update to the latest version.
Affected Products
CVE-2026-20098
Cisco Meeting Management Versions: 3.12 and earlier
CVE-2026-20119
Cisco TelePresence CE Software and RoomOS Software Versions: 10 and earlier
Cisco TelePresence CE Software and RoomOS Software Version: 11
Resolved Vulnerabilities
Arbitrary file upload vulnerability in Cisco Meeting Management (CVE-2026-20098)
Denial of Service Vulnerability in Cisco TelePresence Collaboration Endpoint Software and Cisco RoomOS Software (CVE-2026-20119)
Vulnerability Patches
vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.
CVE-2026-20098
Cisco Meeting Management Version: 3.12.1 MR
CVE-2026-20119
Cisco TelePresence CE Software and RoomOS Software 10 and earlier
– on-premises operating environment version: Migrated to a fixed release
– cloud-integrated operating environment versions: 11.33.1.10, 26.0.1.5
Cisco TelePresence CE Software and RoomOS Software 11
– on-premises operating environment versions: 11.27.5.0, 11.32.3.0
– cloud-integrated operating environment versions: 11.33.1.10, 26.0.1.5
references
[1] Cisco Meeting Management Arbitrary File Upload Vulnerability
[2] Cisco TelePresence Collaboration Endpoint Software and RoomOS Software Denial of Service Vulnerability
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tce-roomos-dos-9V9jrC2q