Bleeping Computer

Cisco warns that Unified CM has hardcoded root SSH credentials

Cisco has removed a backdoor account from its Unified Communications Manager (Unified CM), which would have allowed remote attackers to log in to unpatched devices with root privileges. Cisco Unified ...
CSOonline

Hardcoded root credentials in Cisco Unified CM trigger max-severity alert

Static root credentials left in limited Unified Communications Manager builds could let attackers gain full control over enterprise communications systems. Cisco (Nasdaq:CSCO) has patched a max ...