Ce mail provient de l'extérieur, restons vigilants ===================================================================== CERT-Renater Note d'Information No. 2026/VULN127 _____________________________________________________________________ DATE : 05/02/2026 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Systems running Cisco Meeting Management, Cisco TelePresence Collaboration Endpoint Software and RoomOS Software, Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure, Cisco Secure Web Appliance. ===================================================================== https://sec.cloudapps.cisco.com/security/center/publicationListing.x _____________________________________________________________________ Below is the list of Cisco Security Advisories published by Cisco PSIRT on 2026-February-04. The following PSIRT security advisories (2 High, 3 Medium) were published at 16:00 UTC today. Table of Contents: 1) Cisco Meeting Management Arbitrary File Upload Vulnerability - SIR: High 2) Cisco TelePresence Collaboration Endpoint Software and RoomOS Software Denial of Service Vulnerability - SIR: High 3) Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability - SIR: Medium 4) Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Open Redirect Vulnerability - SIR: Medium 5) Cisco Secure Web Appliance Real-Time Scanning Archive File Bypass Vulnerability - SIR: Medium +-------------------------------------------------------------------- 1) Cisco Meeting Management Arbitrary File Upload Vulnerability CVE-2026-20098 SIR: High CVSS Score v(3.1): 8.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cmm-file-up-kY47n8kK ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cmm-file-up-kY47n8kK"] +-------------------------------------------------------------------- 2) Cisco TelePresence Collaboration Endpoint Software and RoomOS Software Denial of Service Vulnerability CVE-2026-20119 SIR: High CVSS Score v(3.1): 7.5 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tce-roomos-dos-9V9jrC2q ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tce-roomos-dos-9V9jrC2q"] +-------------------------------------------------------------------- 3) Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability CVE-2026-20111 SIR: Medium CVSS Score v(3.1): 4.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-xss-bYeVKCD ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-xss-bYeVKCD"] +-------------------------------------------------------------------- 4) Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Open Redirect Vulnerability CVE-2026-20123 SIR: Medium CVSS Score v(3.1): 4.3 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-epnm-pi-redirect-6sX82dN ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-epnm-pi-redirect-6sX82dN"] +-------------------------------------------------------------------- 5) Cisco Secure Web Appliance Real-Time Scanning Archive File Bypass Vulnerability CVE-2026-20056 SIR: Medium CVSS Score v(3.1): 4.0 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wsa-archive-bypass-Scx2e8zF ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wsa-archive-bypass-Scx2e8zF"] ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =========================================================