wid-sec-w-2026-0699 · Published 2026-03-11 · View on BSI CERT-Bund ↗

Cisco Finesse, Unified Intelligence Center, Unified CCX: Multiple Vulnerabilities allow Cross-Site Scripting

CVSS 6.1 MEDIUM

Risk Summary

Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Cisco Finesse, Cisco Unified Intelligence Center und Cisco Unified Contact Center Express (UCCX) ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen.

CVEs (2)

CVE-2026-20116 CVE-2026-20117

Affected Vendors

Cisco

Affected Products (6)

Cisco · Finesse <15.0(1)ES202511

Cisco · Finesse 15.0(1)ES202511

Cisco · Unified Contact Center Express (UCCX) <15.0 ES0

Cisco · Unified Contact Center Express (UCCX) 15.0 ES0

Cisco · Unified Intelligence Center <15.0(1)ES202511

Cisco · Unified Intelligence Center 15.0(1)ES202511

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more