THREATOPS
THREAT OPSThreat News › Cisco Unity Connection Remote Code Execution and Server-Side Request Forgery Vulnerabilities

Cisco Unity Connection Remote Code Execution and Server-Side Request Forgery Vulnerabilities

lowcisco_psirtPublished 2026-05-06

<p>Multiple vulnerabilities in Cisco Unity Connection could allow a remote attacker to execute arbitrary code on&nbsp;or conduct server-side request forgery (SSRF) attacks through an affected device.</p> <p>For more information about these vulnerabilities, see the <a href="#details">Details</a> section of this advisory.&nbsp;</p> <p>Cisco has released software updates that address these vulnerabil

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-unity-rce-ssrf-hENhuASy?vs_f=Cisco%20Security%20Advisory%26vs_cat=Security%20Intelligence%26vs_type=RSS%26vs_p=Cisco%20Unity%20Connection%20Remote%20Code%20Execution%20and%20Server-Side%20Request%20Forgery%20Vulnerabilities%26vs_k=1