THREATOPS
THREAT OPSThreat News › CVE-2026-20230 | Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability

CVE-2026-20230 | Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability

lowhorizon3Published 2026-06-24

<p>Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) contain a critical server-side request forgery (SSRF) vulnerability that could allow an unauthenticated remote attacker to write files to the underlying operating system and ultimately escalate privileges to root. Tracked as CVE-2026-20230…</p> <p><a href="https

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://horizon3.ai/attack-research/vulnerabilities/cve-2026-20230/