CVE-2025-20275 – Cisco Unified Contact Center Express Java Deserialization Code Execution Vulnerability

June 4, 2025

CVE ID : CVE-2025-20275

Published : June 4, 2025, 5:15 p.m. | 2 hours, 21 minutes ago

Description : A vulnerability in the file opening process of Cisco Unified Contact Center Express (Unified CCX) Editor could allow an unauthenticated attacker to execute arbitrary code on an affected device.

This vulnerability is due to insecure deserialization of Java objects by the affected software. An attacker could exploit this vulnerability by persuading an authenticated, local user to open a crafted .aef file. A successful exploit could allow the attacker to execute arbitrary code on the host that is running the editor application with the privileges of the user who launched it.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-20276 – “Cisco Unified CCX Java Deserialization Remote Code Execution Vulnerability”

Next Article CVE-2025-20259 – Cisco ThousandEyes Endpoint Agent for Windows Symbolic Link File Deletion Vulnerability

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

I finally gave NotebookLM my full attention – and it really is a total game changer

Google Chrome for iOS now lets you switch between personal and work accounts

How the Trump administration changed AI: A timeline

Download your photos before AT&T shuts down its cloud storage service permanently

Laravel Live Denmark

Laravel Live Denmark

The July 2025 Laravel Worldwide Meetup is Today

Livewire Security Vulnerability

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

Halo and Half-Life combine in wild new mod, bringing two of my favorite games together in one — here’s how to play, and how it works

Surprise! The iconic Roblox ‘oof’ sound is back — the beloved meme makes “a comeback so good it hurts” after three years of licensing issues

CVE-2025-20275 – Cisco Unified Contact Center Express Java Deserialization Code Execution Vulnerability

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access

Microsoft Teams adds social-style Storyline feed for individual updates

SpicyPass is a lightweight password manager

LIVE: Summer Game Fest & Xbox Games Showcase — Latest announcements, rumors, and updates

CVE-2025-48911 – Citrix ShareFile Permission Vulnerability

OpenAI Introduces the Evals API: Streamlined Model Evaluation for Developers

CVE-2025-48793 – Fortinet SSL/TLS Implementation Vulnerability

CVE-2025-6775 – Xiaoyunjie OpenVPN-CMS-Flask Command Injection Vulnerability

Why these $160 earbuds are my new favorite for work and travel over the AirPods

CVE-2025-20275 – Cisco Unified Contact Center Express Java Deserialization Code Execution Vulnerability

Related Posts