CVE-2026-20060

Name of the Vulnerable Software and Affected Versions Cisco Unity Connection (affected versions not specified)

Description An issue in the web-based management interface allows an unauthenticated remote attacker to redirect users to a malicious web page. This occurs due to improper input validation of HTTP request parameters. An attacker can exploit this by persuading a user to click a specially crafted link.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.