CVE-2025-20156CRITICAL 9.9EPSS p62.8%

CVE-2025-20156CVE-2025-20156

Description

A vulnerability in the REST API of Cisco Meeting Management could allow a remote, authenticated attacker with low privileges to elevate privileges to administrator on an affected device. This vulnerability exists because proper authorization is not enforced upon REST API users. An attacker could exploit this vulnerability by sending API requests to a specific endpoint. A successful exploit could allow the attacker to gain administrator-level control over edge nodes that are managed by Cisco Meeting Management.

Scoring

CVSS 3.19.9 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS1.15% probability of exploitation · percentile 62.8% · 2026-06-19T12:03:05Z
Published2025-01-22
Last modified2025-08-01

Underlying weaknesses· 1

CWE-274

References

  1. https://blog.clamav.net/2025/01/clamav-142-and-108-security-patch.html
  2. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-ole2-H549rphA
  3. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cmm-privesc-uy2Vf8pc

1

TypeTargetConfidenceTier
WeaknessImproper Handling of Insufficient Privilegescwe-2740%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-20155
CVE
CVE-2025-20164
CVE
CVE-2026-20098
CVE
CVE-2026-20223
CVE
CVE-2025-20349
CVE
CVE-2025-20341
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.