> TritonInfoSec News
Home / Jun 06, 2026 / Story
0
#6 BleepingComputer general June 04, 2026 at 11:09 UTC

Cisco warns of critical Unified CM flaw with PoC exploit code

By Sergiu Gatlan

AI Summary

Cisco patched a critical SSRF vulnerability (CVE-2026-20230) in Unified Communications Manager that allows unauthenticated remote attackers to write files and escalate to root, with public proof-of-concept exploit code already released. Cisco's PSIRT states no active exploitation has been observed yet, but the PoC significantly shortens the window before attacks begin.

Read full article → https://www.bleepingcomputer.com/news/security/cis…

Relevance score: 81.0/100

# More from June 06

  1. 1
    Cisco warns of unpatched SD-WAN zero-day exploited in attacks BleepingComputer
  2. 2
    Chrome 149 Patches 429 Vulnerabilities SecurityWeek
  3. 3
    Chinese APT deploys new malware to keep access to hacked networks BleepingComputer
  4. 4
    IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks The Hacker News
  5. 5
    Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites The Hacker News
  6. 7
    Hackers Spied on a Stock Exchange Executive's Outlook Mailbox for Five Months The Hacker News
  7. 8
    CISA: Hackers now exploit SolarWinds Serv-U flaw to crash servers BleepingComputer
  8. 9
    Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories The Hacker News
  9. 10
    Five Eyes: Chinese Spies Target Government, Military Staff With Fake Job Opportunities SecurityWeek