Severity: Medium
ID: 237901
File Name: cisco-sa-vos-command-inject-65s2UCYy.nasl
Version: 1.1
Type: combined
Family: CISCO
Published: 6/6/2025
Updated: 6/6/2025
Supported Sensors: Nessus
Risk Factor: Medium
Score: 6.7
Risk Factor: Medium
Base Score: 5.9
Temporal Score: 4.4
Vector: CVSS2#AV:L/AC:L/Au:M/C:C/I:C/A:N
CVSS Score Source: CVE-2025-20278
Risk Factor: Medium
Base Score: 6
Temporal Score: 5.2
Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
CPE: cpe:/a:cisco:unified_communications_manager
Required KB Items: Host/Cisco/CUCM/Version, Host/Cisco/CUCM/Version_Display
Exploit Ease: No known exploits are available
Patch Publication Date: 6/4/2025
Vulnerability Publication Date: 6/4/2025
CVE: CVE-2025-20278