THE article discusses a critical vulnerability in Cisco Unified Communications Manager (CVE-2026-20230), which is being actively exploited. The flaw, with a CVSS score of 8.6, allows unauthenticated remote attackers to carry out server-side request forgery (SSRF) attacks, potentially leading to root access. Cisco has advised disabling the WebDialer service to mitigate risks until a patch is released, with initial fixed releases provided for versions 14 and 15 of the software.
Despite the public availability of proof-of-concept (PoC) exploit code, Cisco's PSIRT has not confirmed any active exploitation in the wild, although recent reports from cybersecurity researchers indicate that such exploitation is occurring.