CVE-2026-20098
Unknown Unknown - Not Provided
Arbitrary File Upload and Root Command Execution in Cisco Meeting Management

Publication date: 2026-02-04

Last updated on: 2026-03-10

Assigner: Cisco Systems, Inc.

Description
A vulnerability in the Certificate Management feature of Cisco Meeting Management could allow an authenticated, remote attacker to upload arbitrary files, execute arbitrary commands, and elevate privileges to root on an affected system. This vulnerability is due to improper input validation in certain sections of the web-based management interface. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected system. A successful exploit could allow the attacker to upload arbitrary files to the affected system. The malicious files could overwrite system files that are processed by the root system account and allow arbitrary command execution with root privileges. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of video operator.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-04
Last Modified
2026-03-10
Generated
2026-05-07
AI Q&A
2026-02-04
EPSS Evaluated
2026-05-05
NVD
CVE-2026-20098
EUVD
EUVD-2026-5426
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
cisco meeting_management to 3.12.1 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-434 The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability exists in the Certificate Management feature of Cisco Meeting Management. It allows an authenticated remote attacker to upload arbitrary files, execute arbitrary commands, and escalate their privileges to root on the affected system.

The root cause is improper input validation in parts of the web-based management interface. An attacker with valid credentials (at least with the role of video operator) can send a specially crafted HTTP request to exploit this flaw.

Successful exploitation enables the attacker to upload malicious files that can overwrite system files processed by the root system account, leading to arbitrary command execution with root privileges.


How can this vulnerability impact me? :

This vulnerability can have severe impacts including unauthorized file uploads, arbitrary command execution, and full system compromise with root privileges.

An attacker exploiting this vulnerability could take complete control over the affected system, potentially leading to data breaches, service disruption, or further attacks within the network.


How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:

I don't know


How can this vulnerability be detected on my network or system? Can you suggest some commands?

I don't know


What immediate steps should I take to mitigate this vulnerability?

I don't know


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart