Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks
Summary
A critical SSRF vulnerability, identified as CVE-2026-20230, in Cisco Unified Communications Manager Server is now actively being exploited in attacks. This flaw allows attackers to perform unauthorized actions on vulnerable systems by tricking the application into making requests to an unintended location.
IFF Assessment
The active exploitation of a critical vulnerability in widely used infrastructure software represents a direct threat to organizations and their data.
Severity
The vulnerability is rated as critical (CVSS 9.1) due to its potential for remote exploitation without authentication, allowing attackers to perform unauthorized actions and potentially gain further access to internal systems.
Defender Context
Organizations using Cisco Unified Communications Manager must prioritize patching this vulnerability immediately, as it is already under active exploitation. Defenders should monitor their networks for signs of unusual outbound traffic or unauthorized access attempts that could indicate exploitation of this SSRF flaw.