Cisco Unified CM: CVE-2026-20230 Actively Exploited After PoC Release24. June 2026CybersecurityCVE-2026-20230 (CVSS 8.6) in Cisco Unified CM and CM SME is being actively exploited – unencrypted HTTP requests enable remote write access without authentication. Share on: