{"uuid": "74c0fb18-eed5-462a-9fbd-10470c3b5d57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20230", "type": "seen", "source": "https://t.me/thehackernews/9156", "content": "\ud83d\udea8 No auth required ... a crafted web request to Cisco Unified CM can write files to the OS and open a path to root.\n\nCVE-2026-20230 patch is out, PoC exploit is public, and no attacks yet. Only bites if WebDialer is ON.\n\nFix: 14SU6 / COP / 15SU5, or kill WebDialer. \n\nRead: https://thehackernews.com/2026/06/cisco-patches-cve-2026-20230-in-unified.html", "creation_timestamp": "2026-07-15T12:00:05.458153Z"}