> TritonInfoSec News
Home / Jun 26, 2026 / Story
0
#3 Dark Reading general June 25, 2026 at 21:54 UTC

In Less Than 24 Hours, Attackers Weaponize Cisco CUCM Flaw

By Jai Vijayan

AI Summary

A newly disclosed Cisco Unified Communications Manager (CUCM) flaw enabling SSRF and privilege escalation to root was weaponized by attackers within 24 hours of public disclosure, affecting both Unified CM and Unified CM SME deployments. The rapid exploitation window gives defenders essentially no patch buffer and illustrates the continued targeting of Cisco unified communications infrastructure. Administrators should prioritize emergency patching and review CUCM exposure to the internet immediately.

Read full article → https://www.darkreading.com/cyberattacks-data-brea…

Relevance score: 85.0/100

# More from June 26

  1. 1
    Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access The Hacker News
  2. 2
    Amadey, StealC malware operations disrupted in Operation Endgame action BleepingComputer
  3. 4
    New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis The Hacker News
  4. 5
    CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited The Hacker News
  5. 6
    CISA warns of max severity Ubiquiti flaws exploited in attacks BleepingComputer
  6. 7
    Gamaredon in 2025: Leveraging tunnels, workers, dead drops, and new alliances WeLiveSecurity (ESET)
  7. 8
    BeyondTrust, LastPass Impacted by Klue-Salesforce Incident SecurityWeek
  8. 9
    Exploitable CI/CD Vulnerabilities Expose Millions of Repositories to Hijacking SecurityWeek
  9. 10
    Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability The Hacker News