{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-20172", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2025-10-08T11:59:15.391Z", "datePublished": "2026-05-06T16:15:37.789Z", "dateUpdated": "2026-05-06T17:46:04.178Z"}, "containers": {"cna": {"title": "Cisco Enterprise Chat and Email Lite Agent File Upload Vulnerability", "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "NONE"}}], "descriptions": [{"lang": "en", "value": "A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct browser-based attacks. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Agent.\r\n\r\nThis vulnerability is due to inadequate validation of file contents during file upload operations. An attacker could exploit this vulnerability by uploading a file that contains malicious scripts or HTML code, which the application could make available to other users to access. A successful exploit could allow the attacker to execute the contents of that file in the browser of a user and conduct browser-based attacks. "}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ece-lite-agent-BCgSN8eb", "name": "cisco-sa-ece-lite-agent-BCgSN8eb"}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-ece-lite-agent-BCgSN8eb", "discovery": "EXTERNAL", "defects": ["CSCws79262"]}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "Reliance on File Name or Extension of Externally-Supplied File", "type": "cwe", "cweId": "CWE-646"}]}], "affected": [{"vendor": "Cisco", "product": "Cisco Enterprise Chat and Email", "versions": [{"version": "11.6(1)_ES3", "status": "affected"}, {"version": "11.6(1)_ES4", "status": "affected"}, {"version": "12.0(1)_ES6", "status": "affected"}, {"version": "11.6(1)_ES8", "status": "affected"}, {"version": "12.0(1)_ES5a", "status": "affected"}, {"version": "11.6(1)_ES9", "status": "affected"}, {"version": "12.0(1)_ES6_ET1", "status": "affected"}, {"version": "11.6(1)_ES6", "status": "affected"}, {"version": "11.6(1)_ES5", "status": "affected"}, {"version": "12.5(1)_ET1", "status": "affected"}, {"version": "12.5(1)", "status": "affected"}, {"version": "12.5(1)_ES3_ET1", "status": "affected"}, {"version": "12.0(1)_ES3", "status": "affected"}, {"version": "11.6(1)_ES11", "status": "affected"}, {"version": "12.0(1)_ES4", "status": "affected"}, {"version": "12.0(1)_ES5", "status": "affected"}, {"version": "11.6(1)_ES2", "status": "affected"}, {"version": "11.6(1)_ES9a", "status": "affected"}, {"version": "11.6(1)_ES10", "status": "affected"}, {"version": "12.0(1)_ES1", "status": "affected"}, {"version": "12.0(1)", "status": "affected"}, {"version": "12.5(1)_ES3", "status": "affected"}, {"version": "12.6(1)", "status": "affected"}, {"version": "11.5(1)", "status": "affected"}, {"version": "12.0(1)_ES2", "status": "affected"}, {"version": "11.6(1)_ES7", "status": "affected"}, {"version": "12.5(1)_ES2", "status": "affected"}, {"version": "12.6(1)_ET1", "status": "affected"}, {"version": "11.6(1)", "status": "affected"}, {"version": "12.5(1)_ES1", "status": "affected"}, {"version": "12.6(1)_ET2", "status": "affected"}, {"version": "12.5(1)_ES3_ET2", "status": "affected"}, {"version": "12.0(1)_ES6_ET2", "status": "affected"}, {"version": "12.6(1)_ES1", "status": "affected"}, {"version": "12.5(1)_ES4", "status": "affected"}, {"version": "11.6(1)_ES12", "status": "affected"}, {"version": "12.6(1)_ET3", "status": "affected"}, {"version": "12.5(1)_ES4_ET1", "status": "affected"}, {"version": "12.0(1)_ES6_ET3", "status": "affected"}, {"version": "12.6(1)_ES1_ET1", "status": "affected"}, {"version": "12.6(1)_ES2", "status": "affected"}, {"version": "12.6_ES2_ET1", "status": "affected"}, {"version": "12.5(1)_ES5", "status": "affected"}, {"version": "12.6_ES2_ET2", "status": "affected"}, {"version": "12.0(1)_ES7", "status": "affected"}, {"version": "12.6_ES2_ET3", "status": "affected"}, {"version": "12.0(1)_ES7_ET1", "status": "affected"}, {"version": "12.5(1)_ES5_ET1", "status": "affected"}, {"version": "12.6_ES2_ET4", "status": "affected"}, {"version": "12.6(1)_ES3", "status": "affected"}, {"version": "11.6(1)_ES12_ET1", "status": "affected"}, {"version": "12.6_ES3_ET1", "status": "affected"}, {"version": "12.5(1)_ES6", "status": "affected"}, {"version": "12.6_ES3_ET2", "status": "affected"}, {"version": "12.6(1)_ES4", "status": "affected"}, {"version": "12.5(1)_ES7", "status": "affected"}, {"version": "12.6(1)_ES4_ET1", "status": "affected"}, {"version": "12.6(1)_ES5", "status": "affected"}, {"version": "12.6(1)_ES5_ET1", "status": "affected"}, {"version": "12.6(1)_ES5_ET2", "status": "affected"}, {"version": "12.6(1)_ES6", "status": "affected"}, {"version": "12.6(1)_ES6_ET1", "status": "affected"}, {"version": "12.5(1)_ES8", "status": "affected"}, {"version": "12.6(1)_ES6_ET2", "status": "affected"}, {"version": "12.6(1)_ES7", "status": "affected"}, {"version": "12.6(1)_ES8", "status": "affected"}, {"version": "12.6(1)_ES4_ET2", "status": "affected"}, {"version": "12.6(1)_ES3_ET3", "status": "affected"}, {"version": "12.6(1)_ES2_ET5", "status": "affected"}, {"version": "12.6(1)_ES1_ET2", "status": "affected"}, {"version": "12.6(1)_ES8_ET1", "status": "affected"}, {"version": "12.6(1)_ES7_ET1", "status": "affected"}, {"version": "12.6(1)_ES6_ET3", "status": "affected"}, {"version": "12.6(1)_ES5_ET3", "status": "affected"}, {"version": "12.5(1)_ES8_ET1", "status": "affected"}, {"version": "12.5(1)_ES3_ET3", "status": "affected"}, {"version": "12.5(1)_ES5_ET2", "status": "affected"}, {"version": "12.5(1)_ES6_ET1", "status": "affected"}, {"version": "12.5(1)_ES4_ET2", "status": "affected"}, {"version": "12.5(1)_ES7_ET1", "status": "affected"}, {"version": "12.6(1)_ES8_ET2", "status": "affected"}, {"version": "12.6(1)_ES9", "status": "affected"}, {"version": "12.6(1)_ES9_ET1", "status": "affected"}, {"version": "12.5(1)_ES9", "status": "affected"}, {"version": "12.6(1)_ES9_ET2", "status": "affected"}, {"version": "12.6(1)_ES9_ET3", "status": "affected"}, {"version": "12.6(1)_ES10", "status": "affected"}, {"version": "12.6(1)_ES10_ET1", "status": "affected"}, {"version": "15.0(1)", "status": "affected"}, {"version": "12.6(1)_ES11", "status": "affected"}, {"version": "15.0(1)_ET1", "status": "affected"}, {"version": "15.0(1)ES202508", "status": "affected"}, {"version": "12.6(1)_ES11_ET1", "status": "affected"}, {"version": "12.6(1)_ES11_ET2", "status": "affected"}, {"version": "12.6(1)_ES12", "status": "affected"}, {"version": "15.0(1)ES202511", "status": "affected"}, {"version": "12.6(1)_ES12_ET1", "status": "affected"}, {"version": "15.0(1)ES202511_ET1", "status": "affected"}, {"version": "12.5(1)_ES10", "status": "affected"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2026-05-06T16:15:37.789Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-05-06T17:45:56.726902Z", "id": "CVE-2026-20172", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-05-06T17:46:04.178Z"}}]}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct browser-based attacks. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Agent.\r\n\r\nThis vulnerability is due to inadequate validation of file contents during file upload operations. An attacker could exploit this vulnerability by uploading a file that contains malicious scripts or HTML code, which the application could make available to other users to access. A successful exploit could allow the attacker to execute the contents of that file in the browser of a user and conduct browser-based attacks. "}], "id": "CVE-2026-20172", "lastModified": "2026-05-06T17:16:20.880", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "psirt@cisco.com", "type": "Primary"}]}, "published": "2026-05-06T17:16:20.880", "references": [{"source": "psirt@cisco.com", "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ece-lite-agent-BCgSN8eb"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-646"}], "source": "psirt@cisco.com", "type": "Primary"}]}

{}

{"created": "2026-05-06T17:30:08.253995+00:00", "updated": "2026-05-06T17:30:08.254005+00:00", "vendors": []}