VDB
CVE-2026-20230
CVE-2026-20230
PUBLISHED
CVSS 8.600000381469727 HIGH
This vulnerability is due to improper input validation for specific HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device.
EPSS 0.02% · 5.0th percentile
Risk Scores
CVSS 3.1
8.600000381469727
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
EPSS Score
0.02%
5.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Cisco Unified Communications Manager (Unified CM) | |
| Ubiquiti | Cisco Unified Communications Manager Session Management Edition (Unified CM SME) |
Exploit Intelligence
- https://denizhalil.com/2026/06/12/cve-2026-20230-cisco-unified-cm-ssrf/ (cve.org)
- Cisco Unified Communications Manager (Unified CM) deployments affected by CVE-2026-20230. (github-poc-repo)
- Cisco Unified Communications Manager (Unified CM) deployments affected by CVE-2026-20230. (github-poc-repo)
- Cisco Unified Communications Manager (Unified CM) deployments affected by CVE-2026-20230. (github-poc-repo)
- Cisco Unified Communications Manager (Unified CM) deployments affected by CVE-2026-20230. (github-poc-repo)
- Cisco Unified Communications Manager (Unified CM) deployments affected by CVE-2026-20230. (github-poc-repo)
- Cisco Unified Communications Manager (Unified CM) deployments affected by CVE-2026-20230. (github-poc)
- Cisco Unified Communications Manager (Unified CM) deployments affected by CVE-2026-20230. (github-poc)
- Cisco Unified Communications Manager (Unified CM) deployments affected by CVE-2026-20230. (github-poc)
- Cisco Unified Communications Manager (Unified CM) deployments affected by CVE-2026-20230. (github-poc)
…and 11 more exploits
Timeline
- Jun 3, 2026 CVE Published
- Jun 5, 2026 EPSS Score
- Jun 10, 2026 Coalition ESS Score