Start your free trial today.
Protect your organization with cutting-edge cybersecurity solutions designed for resilience and efficiency. Secure your digital assets with confidence.
Your Shield Against Threats
Unleash the Power of Cybersecurity
Boost Your Security, Enhance Your Business
We solve Your Cyber Challenges
Quick Links
Resources
Deepaegis Portals
2025 Deepaegis. All Rights Reserved.
A critical vulnerability exists in Cisco Unified Communications Manager (Unified CM) and Session Management Edition (SME), allowing unauthenticated remote attackers to access the system using hard-coded root account credentials. These credentials are static and cannot be changed or deleted, originally intended for development use.
A successful exploit allows remote attackers to log in as the root user and execute arbitrary commands, fully compromising the affected system.
Cisco Unified Communications Manager (Unified CM)
Remediation: Cisco has released a patch addressing this issue. It is strongly recommended to apply the patch immediately.
Vendor Patch Advisory – Cisco
No known workarounds.
Immediately apply the official patch.
Monitor login attempts using the root account.
Not specified
Not specified
No references provided
No affected organizations specified
This document contains sensitive information. Unauthorized distribution is prohibited.