ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
HIGH Vulnerabilities

CVE-2026-20230 SSRF in Cisco Unified CM is reportedly active in real attacks

Source headline: Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks

Threat level High
Signal strength 75/100
Source confidence 1 source
Published 3 hours ago

Intelligence Summary

Cisco Unified Communications Manager contains a high-severity SSRF issue tracked as CVE-2026-20230. The flaw allows attackers to coerce the server into making requests to unintended destinations. Security reporting indicates this vulnerability is now being exploited in active attacks. Affected organizations using impacted Unified CM versions should assume risk of further compromise and data exposure. Prioritize applying the vendor fix or available mitigations and validate exposure across all deployments.

Recommended Action

Review affected assets, schedule urgent remediation, and monitor related indicators.

Topics

#cisco #cve-2026-20230 #ssrf #unified-cm #vulnerability-exploitation
Original reporting BleepingComputer Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks
Open original source

Related Pulse Signals

View all signals
Critical · Vulnerabilities FFmpeg PixelSmash bug enables remote code execution via media files Critical · Vulnerabilities FFmpeg patches PixelSmash bug that can enable RCE in media servers High · Vulnerabilities DifyTap reveals Dify cross-tenant flaws that can leak AI chat content Critical · Vulnerabilities Squidbleed bug in Squid proxy can expose other users’ HTTP requests