A critical vulnerability in Cisco's widely used Unified Communications Manager (Unified CM) is now under active exploitation, allowing attackers to potentially gain complete control of affected systems.