Cisco Unified Communications Manager CVSS 10 Vulnerability: 1K+ Assets Exposed to the Internet

**Cisco CUCM critical vulnerability (CVE-2025-20309):** Cisco released urgent updates for a CVSS 10.0 flaw in Unified Communications Manager and Session Management Edition that allows root access via hard-coded credentials in affected 15.0.1.13010-1 through 15.0.1.13017-1 builds; over a thousand internet-exposed devices were identified across multiple countries, and threat actors including APT28, APT41, MuddyWater, and access brokers are likely to exploit it, so immediate patching, restricting management access, vigilant SSH/root login monitoring, and network segmentation are recommended.