CVE Alert: CVE-2025-20275

June 5, 2025
image 1

Vulnerability Summary: CVE-2025-20275

A vulnerability in the file opening process of Cisco Unified Contact Center Express (Unified CCX) Editor could allow an unauthenticated attacker to execute arbitrary code on an affected device.  This vulnerability is due to insecure deserialization of Java objects by the affected software. An attacker could exploit this vulnerability by persuading an authenticated, local user to open a crafted .aef file. A successful exploit could allow the attacker to execute arbitrary code on the host that is running the editor application with the privileges of the user who launched it.

Affected Endpoints:

No affected endpoints listed.

Published Date:

6/4/2025, 5:15:27 PM

⚠️ CVSS Score:

CVSS v3 Score: 5.3 (Medium)

Exploit Status:

Not Exploited

References:

Recommended Action:

No proposed action available. Please refer to vendor documentation for updates.

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee
Patreon

To keep up to date follow us on the below channels.

Tags: , ,

You may have missed

image

[CRYPTO24] – Ransomware Victim: SOUBEIRAN CHOBET S[.]R[.]L[.]

July 22, 2025
image

[AKIRA] – Ransomware Victim: Pinnacle Woodwork

July 22, 2025
image

[LYNX] – Ransomware Victim: Nippn TH

July 22, 2025
0f645a392b509c847d4a19b40e1ad8aa777b70e3d5b060d0da8925cb3ab62dc7

If You’re Forced To Use Windows 11, Here’s How To Steal Some Of Your Time Back

July 22, 2025
9a407790e0d9a3e8767874ef549d60009f0b5ec7e1070c2c60d04a6cc2613ccb

Japan Discovers Object Out Beyond Pluto That Rewrites The Planet 9 Theory

July 22, 2025