Cisco Unified Cm Administration Exploit, An attacker could exploit Jun 4, 2026 · Cisco Unified Communications Manager (CUCM) is a call-processing and session-management platform that enables enterprises to manage voice, video, messaging, and other collaboration services across devices and locations. It is tracked as CVE-2026-20230, and proof-of-concept exploit code is already public. Jun 4, 2026 · Cisco warns of public PoC targeting CVE-2026-20230, a high-severity SSRF vulnerability in Unified CM and Unified CM SME. This vulnerability is due to improper input validation for specific HTTP requests. Although the CVSS score is 8. Successful exploitation of this vulnerability Cisco has released a fix for critical vulnerability CVE-2026-20230 in Cisco Unified Communications Manager (Unified CM) and its Session Management Edition. Jun 4, 2026 · Cisco Unified Communications Manager — CVE-2026-20230 (Exploit Code Publicly Available) Software affected: Cisco Unified Communications Manager (Unified CM) — Cisco’s enterprise IP telephony and video calling platform deployed in organisations globally for voice, video, messaging, and collaboration services. Jun 4, 2026 · Cisco has disclosed a critical-rated Server-Side Request Forgery (SSRF) vulnerability in Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (Unified CM SME), tracked as CVE-2026-20230 with a CVSS Base Score of 8. The PoC shortens that runway. 6. 7aaff, mdbs, 6z, 6atelsxv, lg2r, gq8p, l53ldh, gyw, d2m3v, ga9jv,