Unrated severityNVD Advisory· Published May 21, 2025· Updated Feb 26, 2026
Cisco Unified Intelligence Center Privilege Escalation Vulnerability
CVE-2025-20113
Description
A vulnerability in Cisco Unified Intelligence Center could allow an authenticated, remote attacker to elevate privileges to Administrator for a limited set of functions on an affected system.
This vulnerability is due to insufficient server-side validation of user-supplied parameters in API or HTTP requests. An attacker could exploit this vulnerability by submitting a crafted API or HTTP request to an affected system. A successful exploit could allow the attacker to access, modify, or delete data beyond the sphere of their intended access level, including obtaining potentially sensitive information stored in the system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)range: 11.6(1)
- Range: 10.6(1)
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.