CVE-2020-27127
CRITICALCisco Jabber - RCE
Title source: llmDescription
Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) with elevated privileges or gain access to sensitive information. For more information about these vulnerabilities, see the Details section of this advisory.
Scores
CVSS v3
9.9
EPSS
0.0034
EPSS Percentile
56.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Classification
CWE
CWE-201
CWE-269
Status
published
Affected Products (12)
cisco/jabber
cisco/jabber
cisco/jabber
cisco/jabber
cisco/jabber
cisco/jabber
cisco/jabber
cisco/jabber
cisco/jabber_for_mobile_platforms
cisco/jabber_for_mobile_platforms
cisco/jabber_for_mobile_platforms
cisco/jabber_for_mobile_platforms
Timeline
Published
Dec 11, 2020
Tracked Since
Feb 18, 2026