Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public

Cisco has patched a bug in Unified Communications Manager that lets an unauthenticated attacker on the network write files to the box and, from there, climb to root. It is tracked as CVE-2026-20230, and proof-of-concept exploit code is already public. Cisco's PSIRT says it has not seen the flaw used in attacks yet. The PoC shortens that runway. The flaw is a server-side request forgery.

The article reports that Cisco patched CVE-2026-20230, a critical server-side request forgery (SSRF) vulnerability in Unified Communications Manager and Unified CM SME that allows an unauthenticated remote attacker to send crafted HTTP requests, write files to the underlying OS, and potentially escalate to root if the WebDialer service is enabled.[2][4][8] Proof-of-concept exploit code is publicly available, though Cisco PSIRT has not yet observed in-the-wild exploitation.[2] From a CyberSE.AI perspective, this illustrates AI supply chain and infrastructure risk: AI agents and LLM-integrated workflows often depend on unified communications platforms and adjacent network services, so unpatched SSRF-to-root flaws in such components can provide attackers with a path to compromise the environment hosting or integrating AI systems. Practically, organizations should ensure these UC components are included in SBOM and asset inventories, rapidly apply the Cisco patches or disable WebDialer where feasible, and incorporate this class of SSRF/privilege-escalation infrastructure issues into broader AI security readiness and dependency risk assessments.