Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root

Threat actors have begun to exploit a recently disclosed critical security flaw impacting Cisco Unified Communications Manager Unified CM and Unified Communications Manager Session Management Edition Unified CM SME. The vulnerability, tracked as CVE-2026-20230 CVSS score: 8.6, is a case of improp...

Exploit for CVE-2026-20230

CVE-2026-20230 Scanner A Python-based scanner and validation...

Cisco Fixes Actively Exploited Zero-Day CVE-2026-20045 in Unified CM and Webex

Cisco has released fresh patches to address what it described as a "critical" security vulnerability impacting multiple Unified Communications CM products and Webex Calling Dedicated Instance that it has been actively exploited as a zero-day in the wild. The vulnerability, CVE-2026-20045 CVSS...

EUVD-2021-6749

Malicious code in bioql PyPI...

EUVD-2024-18226

Malicious code in bioql PyPI...

CVE-2025-20326

A vulnerability in the web-based management interface of Cisco Unified Communications Manager Unified CM Software and Cisco Unified CM Session Management Edition SME Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected device...

CVE-2023-20010

CVE-2023-20010 affects Cisco Unified Communications Manager (CUCM) and CUCM Session Management Edition (SME). The issue is a web interface input-validation flaw that enables an SQL injection when an authenticated, low-privileged user sends crafted queries. Impact shown in sources: read/modify dat...

Cisco Unified Communications Manager IM & Presence File Read Vulnerability (isco-sa-cucm-imp-afr-YBFLNyzd)

The version of Cisco Unified Communications Manager IM & Presence Service Unified CM IM&P installed on the remote host is prior to 14SU2. It is, therefore, affected by a file read vulnerability. Due to insufficient file permissions, an authenticated remote attacker could read arbitrary files on t...

Design/Logic Flaw

A vulnerability in Cisco Unified Communications Manager Unified CM, Cisco Unified Communications Manager Session Management Edition Unified CM SME, and Cisco Unity Connection could allow an unauthenticated, remote attacker to perform a timing attack. This vulnerability is due to insufficient...

CVE-2022-20815

Cisco CUCM family (Unified CM, Unified CM Session Management Edition, and Unified CM IM&P) web-based management interface contains an XSS vulnerability due to improper validation of user input. An unauthenticated, remote attacker could trick a user into clicking a crafted link, allowing execution...

CVE-2022-20752

CVE-2022-20752 affects Cisco Unified Communications Manager (Unified CM), Unified CM Session Management Edition (Unified CM SME), and Cisco Unity Connection. The issue is a timing attack caused by insufficient protection of a system password, enabling an unauthenticated remote attacker to infer a...

Cisco Unified CM和Unified CM SME跨站脚本漏洞

Cisco Unified Communications Manager is a call processing component of Cisco's Unified Communications System. Unified Communications Manager Session Management Edition is the session management version of Unified Communications Manager. A cross-site scripting vulnerability exists in Unified CM an...

CVE-2022-20788

The CVE-2022-20788 issue affects Cisco Unified Communications Manager (Unified CM), Unified CM Session Management Edition (Unified CM SME), and Cisco Unity Connection. It is a cross-site scripting (XSS) vulnerability in the web-based management interface caused by insufficient validation of user-...

CVE-2022-20787

CVE-2022-20787 affects the web-based management interfaces of Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (SME). The root cause is insufficient CSRF protections, allowing an authenticated, remote attacker to entice a user to click a malicious link a...

CVE-2021-1478 Cisco Unified Communications Manager Denial of Service Vulnerability

A vulnerability in the Java Management Extensions JMX component of Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME could allow an authenticated, remote attacker to cause a denial of service DoS condition on an...

CVE-2021-1478

CVE-2021-1478 affects Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (Unified CM SME). The issue arises from an unsecured JMX TCP/IP port, permitting an authenticated, remote attacker over the network to restart the JMX process and cause a denial-of-se...

CVE-2021-1409

Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager Unified CM, Cisco Unified Communications Manager IM & Presence Service Unified CM IM&P, Cisco Unified Communications Manager Session Management Edition Unified CM SME, and Cisco Unity Connection...

CVE-2021-1406

Cisco UC Manager (Unified CM) and Unified CM Session Management Edition (Unified CM SME) have an information disclosure vulnerability where downloadable files may inappropriately contain sensitive data. An authenticated attacker with elevated privileges can exploit via a targeted command sequence...

CVE-2021-1355

Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service Unified CM IM&P could allow an attacker to conduct path traversal attacks and SQL injection attacks on an affected system. One of the SQL injection vulnerabilities that affects Unified CM IM&P also affects Cisc...

Path traversal

Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service Unified CM IM&P could allow an attacker to conduct path traversal attacks and SQL injection attacks on an affected system. One of the SQL injection vulnerabilities that affects Unified CM IM&P also affects Cisc...