A Vulnerability in Cisco Products Could Allow for Server-Side Request Forgery
ID: 428daae1-0914-52d1-a2bf-58503fbe98a5
STIX ID: report--428daae1-0914-52d1-a2bf-58503fbe98a5
Feed Name: CISecurity.org Advisories
Threat Score
A remotely exploitable unauthenticated vulnerability (CVE-2026-20230) was found in Cisco Unified Communications Manager (including Session Management Edition). If WebDialer is enabled, an attacker may trigger SSRF to write arbitrary files to the underlying OS, potentially enabling remote command execution or elevation to root; internet-facing or poorly segmented deployments are at heightened risk.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
