CVE-2026-20230

Cisco Unified Communications Manager · CISA Known Exploited Vulnerability · NIST NVD ↗

Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) contain a server-side request forgery (SSRF) Vulnerability that could allow an unauthenticated, remote attacker to write files to the underlying operating system that could be used later to elevate to root.

2026-06-25
Published
2026-06-28
CISA remediate by

Sources