TECH NEWS

The hits keep on coming for Cisco vulnerabilities

https://image.theregister.com/229735.jpg?imageId=229735&x=0&y=0&cropw=100&croph=100&panox=0&panoy=0&panow=100&panoh=100&width=1200&height=683

CVE-2026-20230 under exploitation, while an earlier SD-WAN 0-day looks even worse than we thought

It’s looking like another tough week (month? year?) for Switchzilla amid reports of new serious vulnerabilities under attack.

First up is a server-side request forgery bug in its Unified Communications Manager tracked as CVE-2026-20230.

Cisco disclosed and patched this flaw in early June. The comms control platform doesn’t properly validate some HTTP requests, and an attacker could exploit this bug to gain root privileges on a compromised device.

At the time, Cisco said that a proof-of-concept exploit was available – and now it seems unknown miscreants are putting that exploit code to use, with threat intel company Defused warning that it observed miscreants exploiting CVE-2026-20230 over the weekend.

“The observed chain abuses the WebDialer SSRF to deploy a rogue Apache Axis service, uses that service to write a first-stage JSP file-writer, then drops...

Copyright of this story solely belongs to theregister.com. To see the full text click HERE

Read more