> TritonInfoSec News
Home / Jun 24, 2026 / Story
0
#9 BleepingComputer general June 23, 2026 at 21:48 UTC

Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks

By Lawrence Abrams

AI Summary

CVE-2026-20230, a high-severity Server-Side Request Forgery (SSRF) vulnerability in Cisco Unified Communications Manager (Unified CM) Server, is now being actively exploited in attacks. Cisco Unified CM is widely deployed in enterprise telephony environments, making this a critical patching priority. Organizations running Cisco Unified CM should apply available patches immediately and review network logs for anomalous SSRF-pattern requests.

Read full article → https://www.bleepingcomputer.com/news/security/cis…

Relevance score: 80.0/100

# More from June 24

  1. 1
    FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation The Hacker News
  2. 2
    Scattered Spider Hackers Plead Guilty on Day 1 of Trial Krebs on Security
  3. 3
    LastPass confirms data breach in Klue supply chain attack BleepingComputer
  4. 4
    Trump Order Sets 2030 Deadline for Federal Post-Quantum Crypto Migration The Hacker News
  5. 5
    FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances SecurityWeek
  6. 6
    Five Eyes agencies sound alarm about AI’s threat to cybersecurity The Record
  7. 7
    FFmpeg fixes PixelSmash flaw in widely used video decoder BleepingComputer
  8. 8
    'Cordyceps': Mushrooming Malicious Pull Requests Threaten Developer Workflows Dark Reading
  9. 10
    WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool The Hacker News