Exposures › CVE-2026-20230
Cisco Unified CM SSRF vulnerability allows unauthenticated remote attackers to write files to the OS and escalate to root.
This unpatched SSRF flaw enables remote attackers to write files to the underlying OS, facilitating privilege escalation to root without authentication. DIB organizations must patch immediately to prevent unauthorized code execution and data exfiltration from critical telephony infrastructure.
Shame score — A critical SSRF vulnerability allowing unauthenticated remote code execution and privilege escalation represents a severe security failure that exposes Cisco's Unified CM products to immediate exploitation.
Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) contain a server-side request forgery (SSRF) Vulnerability that could allow an unauthenticated, remote attacker to write files to the underlying operating system that could be used later to elevate to root.
| Product | Provider | Status | Match |
|---|---|---|---|
| AppDynamics GovAPM | AppDynamics (a Cisco company) | Authorized | dex-judge · 0.95 |
| Cisco Cloudlock for Government | Cisco Systems Inc. | Authorized | vendor-exact · 0.90 |
| Cisco Meraki for Government | Cisco Systems Inc. | In Process | vendor-exact · 0.90 |
| Cisco SD-WAN for Government | Cisco Systems Inc. | In Process | vendor-exact · 0.90 |
| Cisco Umbrella for Government | Cisco Systems Inc. | In Process | vendor-exact · 0.90 |
| Cisco Unified Communications Manager Cloud for Government (Cisco UCM Cloud for Government) | Cisco Systems Inc. | Authorized | vendor-exact · 0.90 |
| Duo Federal | Duo Security (A Cisco Company) | Authorized | dex-judge · 0.95 |
| WebEx Contact Center Enterprise for Government (WxCCE-G) | Cisco Systems Inc. | In Process | vendor-exact · 0.90 |
| Webex for Government | Cisco Systems Inc. | Authorized | vendor-exact · 0.90 |