RCE in Cisco Finesse
CVE-2025-20278
A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device as the root user. This vuln…
Vulnerability class: Command Injection (OS Command Injection)
EPSS: 0.001 (17.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.0 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N.
Affected products
- Cisco Finesse — versions 11.0(1)ES_Rollback, 10.5(1)ES4, 11.6(1)ES3
- Cisco Socialminer — versions 12.5(1)ES01, 10.5(1), 11.6(1)
- Cisco Unified Communications Manager — versions 12.5(1)SU2, 12.5(1)SU1, 12.5(1)
- Cisco Unified Communications Manager Im And Presence Service — versions 12.5(1), 12.5(1)SU1, 12.5(1)SU2
- Cisco Unified Contact Center Express — versions 10.6(1), 10.5(1)SU1, 10.6(1)SU3
- Cisco Unified Intelligence Center — versions 11.6(1), 10.5(1), 11.0(1)
- Cisco Unity Connection — versions 12.5(1), 12.5(1)SU1, 12.5(1)SU2
- Cisco Virtualized Voice Browser — versions 11.0(1), 11.6(1)_ES84, 11.5(1)_ES54
Weakness classification (CWE)
Public proof-of-concept exploits
References
Frequently asked questions
- What is CVE-2025-20278?
- CVE-2025-20278 is a medium-severity vulnerability in Cisco Finesse, classified under Command Injection. CVSS score: 6.0/10. Published 2025-06-04.
- How severe is CVE-2025-20278?
- Medium severity. CVSS v3 base score is 6.0 out of 10.
- Is CVE-2025-20278 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.