CVE-2026-20119

Name of the Vulnerable Software and Affected Versions Cisco TelePresence Collaboration Endpoint Software (affected versions not specified) Cisco RoomOS Software (affected versions not specified)

Description A flaw exists in the text rendering subsystem that could allow a remote attacker to cause a denial of service (DoS) condition on an affected device. The issue stems from inadequate validation of input received by the device. An attacker can exploit this by sending crafted text, such as a malicious meeting invitation, to the device. Exploitation does not require user interaction. A successful exploit could force the device to reload, leading to a DoS condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.