Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public

Source: The Hacker News

Overview

Cisco has patched a vulnerability in Unified Communications Manager (Unified CM) that allowed an unauthenticated attacker on the network to write files to the system and subsequently gain root privileges.

Vulnerability Details

• CVE Identifier: CVE‑2026‑20230
• Type: Server‑Side Request Forgery (SSRF)
• Impact: Enables file write on the target system, leading to privilege escalation to root.

Exploit Status

Proof‑of‑concept (PoC) exploit code for this vulnerability is already publicly available. Cisco’s Product Security Incident Response Team (PSIRT) reports that, to date, the flaw has not been observed in the wild, but the availability of the PoC reduces the window of opportunity for attackers.

Mitigation

Cisco has released a patch that addresses the SSRF issue. Administrators should apply the update as soon as possible to prevent potential exploitation.