CVE-2026-20078 | Cisco Unity Connection up to 15SU3 HTTPS path traversal (cisco-sa-unity-file-download-RmKEVWPx)

A vulnerability was found in Cisco Unity Connection. It has been declared as problematic. The affected element is an unknown function of the component HTTPS Handler. Executing a manipulation can lead to relative path traversal.

This vulnerability appears as CVE-2026-20078. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More