CVE-2026-20098
Unknown Unknown - Not Provided
Arbitrary File Upload and Root Command Execution in Cisco Meeting Management

Publication date: 2026-02-04

Last updated on: 2026-03-10

Assigner: Cisco Systems, Inc.

Description
A vulnerability in the Certificate Management feature of Cisco Meeting Management could allow an authenticated, remote attacker to upload arbitrary files, execute arbitrary commands, and elevate privileges to root on an affected system. This vulnerability is due to improper input validation in certain sections of the web-based management interface. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected system. A successful exploit could allow the attacker to upload arbitrary files to the affected system. The malicious files could overwrite system files that are processed by the root system account and allow arbitrary command execution with root privileges. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of video operator.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-04
Last Modified
2026-03-10
Generated
2026-06-16
AI Q&A
2026-02-04
EPSS Evaluated
2026-06-15
NVD
CVE-2026-20098
EUVD
EUVD-2026-5426
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
cisco meeting_management to 3.12.1 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-434 The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Certificate Management feature of Cisco Meeting Management. It allows an authenticated remote attacker to upload arbitrary files, execute arbitrary commands, and escalate their privileges to root on the affected system.

The root cause is improper input validation in parts of the web-based management interface. An attacker with valid credentials (at least with the role of video operator) can send a specially crafted HTTP request to exploit this flaw.

Successful exploitation enables the attacker to upload malicious files that can overwrite system files processed by the root system account, leading to arbitrary command execution with root privileges.

Impact Analysis

This vulnerability can have severe impacts including unauthorized file uploads, arbitrary command execution, and full system compromise with root privileges.

An attacker exploiting this vulnerability could take complete control over the affected system, potentially leading to data breaches, service disruption, or further attacks within the network.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-20098. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart