
Critical Cisco Unified Communications Manager SSRF Flaw Lets Attackers Elevate to Root
Cisco has disclosed a critical Server-Side Request Forgery (SSRF) vulnerability in its Unified Communications Manager and Unified CM Session Management Edition, warning that successful exploitation could allow unauthenticated remote attackers to ultimately gain root-level privileges on affected systems. Tracked as CVE-2026-20230 and assigned advisory ID cisco-sa-cucm-ssrf-cXPnHcW, the flaw carries a CVSS base score of 8.6 […]
The post Critical Cisco Unified Communications Manager SSRF Flaw Lets Attackers Elevate to Root appeared first on Cyber Security News.