Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution

Cisco has announced patches to address four critical security flaws impacting Identity Services and Webex Services that could result in arbitrary code execution and allow an attacker to impersonate any user within the service. The details of the vulnerabilities are below - CVE-2026-20184 CVSS...

CVE-2026-20186

The CVE-2026-20186 entry concerns Cisco Identity Services Engine (ISE). The vulnerability arises from insufficient validation of user-supplied input, enabling an authenticated (Read Only Admin) attacker to remotely execute arbitrary commands on the device via a crafted HTTP request. An attacker c...