CVE-2026-20147 | Cisco Identity Services Engine Software command injection (cisco-sa-ise-rce-traversal-8bYndVrZ)

A vulnerability described as critical has been identified in Cisco Identity Services Engine Software and ISE Passive Identity Connector. This impacts an unknown function. Such manipulation leads to command injection.

This vulnerability is referenced as CVE-2026-20147. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More