By Dark Reading
Publication Date: 2026-01-23 20:56:00
A zero-day vulnerability affecting a range of Cisco’s unified communications products has been exploited by threat actors, though details of the activity are unclear.
Cisco on Wednesday disclosed and patched CVE-2026-20045, a remote code execution (RCE) vulnerability in Cisco’s Unified Communications Manager (UCM) as well as other products. Cisco has 30 million users for UCM, which provides IP-based voice, video, conferencing, and collaboration for enterpises — so the potential impact could be vast.
According to Cisco’s advisory, the flaw stems from improper validation of user-supplied input in HTTP requests: “An attacker could exploit this vulnerability by sending a sequence of crafted HTTP requests to the web-based management interface of an affected device,” the advisory stated. “A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root.”
While the vulnerability received a high-severity CVSS…
