CVE-2025-20275

Name of the Vulnerable Software and Affected Versions Cisco Unified Contact Center Express (Unified CCX) Editor (affected versions not specified)

Description The issue is related to insecure deserialization of Java objects by the affected software. An attacker could exploit this by persuading an authenticated, local user to open a crafted .aef file, potentially allowing the execution of arbitrary code on the host with the privileges of the user who launched the editor application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.