iSec News – Information Security News

Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

Cisco Unified CM flaw under active exploitation after public disclosure

News, Risk, Vendors, Vulnerabilities

June 25, 2026

Threat actors are exploiting CVE-2026-20230 in Cisco Unified CM and Unified CM SME, a critical flaw that can enable server-side request forgery and file writes. Cisco has patched affected versions, and WebDialer must be enabled for abuse.

Latest NEWS

Trump order sets 2030 deadline for federal post-quantum cryptography migration

June 24, 2026
Xsolis says phishing attack exposed data of 1.4 million people

June 24, 2026
GitHub updates actions/checkout to block forked pull request exploits

June 24, 2026
LastPass says Salesforce customer data exposed in Klue supply chain attack

June 24, 2026
Malicious npm packages found posing as PostCSS tools to deliver Windows RAT

June 24, 2026

NIST center issues RFI seeking input on security for autonomous AI agents

News, Policy, Risk

·

January 29, 2026
TA584 adopts Tsundere Bot and XWorm in expanded initial access campaign

Cybercrime, News, Research

·

January 29, 2026
eScan update server breached to deliver malicious update on January 20 2026

Cybercrime, News, Vendors, Vulnerabilities

·

January 29, 2026
Critical vm2 sandbox escape CVE-2026-22709 allows arbitrary code execution

News, Research, Vulnerabilities

·

January 29, 2026
Two n8n sandbox escape flaws allow remote code execution

News, Research, Vulnerabilities

·

January 29, 2026

Loading…Load More

LinkedIn
Facebook

About
Editorial Policy
Privacy
Contact