CRITICAL INTEL: CISCO ROOT EXPLOIT PoC RELEASED & JLR CATASTROPHIC BREACH

**The Intelligence:** In the last 48 hours, the threat landscape has escalated with a major industrial breach and a critical proof-of-concept (PoC) exploit release affecting core enterprise networks. **Key Incidents (June 4-5, 2026):** • Cisco Unified CM SSRF to Root: A critical vulnerability in Cisco Unified Communications Manager (Unified CM) and Session Management Edition allows an unauthenticated, remote attacker to conduct server-side request forgery (SSRF). A successful exploit allows the attacker to write files to the underlying operating system, leading to root privilege escalation. Cisco has confirmed that proof-of-concept exploit code is already publicly available. The exploit requires the WebDialer service to be enabled. • Acer Wave 7 Routers Zero-Day: A critical broken access control flaw (CVE-2026-49200) has been disclosed affecting Acer Wave 7 routers. This vulnerability allows unauthenticated attackers to extract plaintext credentials directly from log archives, leading to complete, unauthorized system access. • Jaguar Land Rover (JLR) Catastrophic Breach: A catastrophic cyberattack has hit Jaguar Land Rover, causing massive disruptions. This breach is currently forcing industrial leaders and governments to urgently address business continuity and resilience in the automotive sector. **Actions Required:** 1. Cisco Mitigation: Immediately verify if the WebDialer service is active in your Cisco Unified CM Administration interface. If enabled, disable the Cisco WebDialer Web Service from the Service Activation menu as a temporary mitigation until patches are applied. 2. Router Audit: Identify any Acer Wave 7 routing hardware in your perimeter and restrict access to log archives immediately.