COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2026-20230

CVE-2026-20230

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2026-06-25
Reference
https://nvd.nist.gov/vuln/detail/CVE-2026-20230
⚡ RCE ⌖ exploited in the wild shame 85/100 exploited-in-wildunpatchedrceprivilege-escalation

Cisco Unified CM SSRF vulnerability allows unauthenticated remote attackers to write files to the OS and escalate to root.

This unpatched SSRF flaw enables remote attackers to write files to the underlying OS, facilitating privilege escalation to root without authentication. DIB organizations must patch immediately to prevent unauthorized code execution and data exfiltration from critical telephony infrastructure.

Shame score — A critical SSRF vulnerability allowing unauthenticated remote code execution and privilege escalation represents a severe security failure that exposes Cisco's Unified CM products to immediate exploitation.

Players implicated

Cisco Systems Inc. · vendorUnified Communications Manager · product

Description

Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) contain a server-side request forgery (SSRF) Vulnerability that could allow an unauthenticated, remote attacker to write files to the underlying operating system that could be used later to elevate to root.

Affected FedRAMP products 9 in the catalog

ProductProviderStatusMatch
AppDynamics GovAPM AppDynamics (a Cisco company) Authorized dex-judge · 0.95
Cisco Cloudlock for Government Cisco Systems Inc. Authorized vendor-exact · 0.90
Cisco Meraki for Government Cisco Systems Inc. In Process vendor-exact · 0.90
Cisco SD-WAN for Government Cisco Systems Inc. In Process vendor-exact · 0.90
Cisco Umbrella for Government Cisco Systems Inc. In Process vendor-exact · 0.90
Cisco Unified Communications Manager Cloud for Government (Cisco UCM Cloud for Government) Cisco Systems Inc. Authorized vendor-exact · 0.90
Duo Federal Duo Security (A Cisco Company) Authorized dex-judge · 0.95
WebEx Contact Center Enterprise for Government (WxCCE-G) Cisco Systems Inc. In Process vendor-exact · 0.90
Webex for Government Cisco Systems Inc. Authorized vendor-exact · 0.90