CVE-2026-20095 | Cisco Enterprise NFV Infrastructure Software Web-based Management Interface command injection (cisco-sa-cimc-cmd-inj-3hKN3bVt)

A vulnerability identified as critical has been detected in Cisco Enterprise NFV Infrastructure Software, Unified Computing System and Unified Computing System E-Series Software. The impacted element is an unknown function of the component Web-based Management Interface. The manipulation leads to command injection.

This vulnerability is listed as CVE-2026-20095. The attack may be initiated remotely. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More