CVE-2025-20351 | Cisco Session Initiation Protocol Software up to 14.3(1)SR3 Web UI cross site scripting (cisco-sa-phone-dos-FPyjLV7A)

A vulnerability described as problematic has been identified in Cisco Session Initiation Protocol Software. This affects an unknown part of the component Web UI. The manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2025-20351. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More