Lantronix EDS5000 devices are vulnerable to remote code execution via command injection in the login protocol (CVE-2025-67038, CVSS 9.8), and active exploitation is occurring.
CVE-2026-20230 (CVSS 8.6) in Cisco Unified CM and CM SME is being actively exploited – unencrypted HTTP requests enable remote write access without authentication.