Vulnerabilidad · Publicado 03/06/2026 · Actualizado 10/06/2026
Cisco PSIRT publica advisory de seguridad: Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability. Tipo: Vulnerabilidad de seguridad. Producto afectado: Cisco. Security Impact Rating: Critical.
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attacker to conduct server-side request forgery (SSRF) attacks through an affected device. This vulnerability is due to improper input validation for specific HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to write files to the underlying operating system that could be used later to elevate
cisco-sa-cucm-ssrf-cXPnHcW — Advisory oficial Cisco PSIRT
CVE-2026-20230 — NVD National Vulnerability Database
Security Impact Rating: Critical
Advisory publicado por Cisco Product Security Incident Response Team (PSIRT).