























Threat Insight
Cisco has released security updates addressing a critical vulnerability, CVE-2026-20223, in Cisco Secure Workload. The vulnerability has a CVSS base score of 10.0 and could allow an unauthenticated remote attacker to gain Site Admin privileges by abusing internal REST API endpoints.
The vulnerability is caused by insufficient validation and authentication for internal REST API endpoints. An attacker could exploit the issue by sending a crafted API request to a vulnerable endpoint without authentication.
Successful exploitation could allow an attacker to:
Cisco has released fixed software versions to remediate the issue. No workarounds are available, and customers are strongly advised to upgrade to a fixed release as outlined in the advisory.
Cisco Secure Workload Release 3.10
Cisco Secure Workload Release 3.9 and earlier
Cisco Secure Workload Release 4.0
The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability according to their advisory[1].
Truesec recommends that you apply fixes according to the table provided by Cisco, see below:
There are no mitigations available.
[1] https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-csw-pnbsa-g8WEnuy
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。