logo

A Vulnerability in Cisco Products Could Allow for Server-Side Request Forgery

ID: 428daae1-0914-52d1-a2bf-58503fbe98a5

STIX ID: report--428daae1-0914-52d1-a2bf-58503fbe98a5

Feed Name: CISecurity.org Advisories

Threat Score
70/100

Date Published: 2026-06-05

Date Updated: 2026-06-21

...
...

A remotely exploitable unauthenticated vulnerability (CVE-2026-20230) was found in Cisco Unified Communications Manager (including Session Management Edition). If WebDialer is enabled, an attacker may trigger SSRF to write arbitrary files to the underlying OS, potentially enabling remote command execution or elevation to root; internet-facing or poorly segmented deployments are at heightened risk.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.