Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root

Threat actors have begun to exploit a recently disclosed critical security flaw impacting Cisco Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME). The vulnerability, tracked as CVE-2026-20230 (CVSS score: 8.6), is a case of improper input validation for specific HTTP requests that could allow an unauthenticated, remote

The article reports active exploitation of CVE-2026-20230, a critical server-side request forgery (SSRF) vulnerability in Cisco Unified Communications Manager and Unified CM SME caused by improper input validation of specific HTTP/WebDialer requests, enabling unauthenticated remote attackers to write files and escalate privileges to root on the underlying OS.[1][2][3][5][8] Public proof-of-concept exploit code and the critical impact rating increase the risk of full compromise of voice and collaboration infrastructure if systems are unpatched or WebDialer remains enabled.[1][2][5][6] From a CyberSE.AI perspective, any AI agents or workflows that depend on Cisco UC infrastructure (for call control, voice bots, or integrated collaboration services) inherit this supply-chain exposure: compromise of UCM can be leveraged to intercept or tamper with AI-driven communications, pivot into adjacent AI services, or manipulate telemetry used to monitor AI systems. Organizations should treat affected Cisco components as part of their AI supply chain, ensure SBOM and asset inventories include these UC dependencies, and use continuous red teaming to model and test scenarios where a compromised UC