—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Remote Code Execution and Information Disclosure Vulnerability in Cisco ISE

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: CRITICAL

Systems Affected

Cisco ISE and Cisco ISE-PIC

Overview

Multiple vulnerabilities have been reported in the Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow a   remote attacker to achieve remote code execution or conduct information disclosure attacks on an affected device.

Target Audience: 

All IT administrators and individuals responsible for maintaining and updating in Software.

Risk Assessment:

High risk of data manipulation and service disruption.

Impact Assessment:

Potential impact on confidentiality, integrity, and availability of the system.

Description

1. Remote Code Execution Vulnerability ( CVE-2026-20181   )

This vulnerability exists due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device.

Successful exploitation of this vulnerability could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root.

2. Information Disclosure Vulnerability ( CVE-2026-20190   )

This vulnerability exists due to improper authorization checks when a resource is accessed. An attacker could exploit this vulnerability by sending crafted traffic to an affected device.

Successful exploitation of this vulnerability could allow the attacker to gain access to sensitive information, including hashed credentials that could be used in future attacks.

Solution

Apply appropriate updates as mentioned in Cisco Advisory

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-G5WP8vv

Vendor Information

CISCO

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-G5WP8vv

References

CISCO

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-G5WP8vv

CVE Name

CVE-2026-20181

CVE-2026-20190

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmo6lrYACgkQ3jCgcSdc

ys9m0g/8CkOhrQqCvcQM/ip0yUE5tYn/4DCNXHbFLs56ydFmn2d2bIspxlnlfN5Z

eRjXBwewe9bKi+OnYb9FoOMWwiKADESz4aob41K8hbDXjSnaq+ujgRd+wbvsjiHV

6550cQ5Yd7LZ49vDO6kthlGAvbJXeCSZi6Phy4XpF2x5S1ODVc5bEZ+FNWQEnSjt

XRfArG+DOuHLJqnbbDHZXxNaw/yoQWvJES0XN+2l0AwQnLHe6n0Pl3oDAmRdlnfv

cHvT/4qsHd164azsP9SbEJrvEUD7/+j3qZW1k/SYZX57OelDoNzxVDpabp1FaGec

xDRelDaGx7YaJpPT5/7sfNnPBWoe49ugtG6h3Q2NxHqV5qp2QjtzG6awpfYk3FTH

Zrcyz4au3nKEVty+UO1Fl0hCbn3X+JRqmYJiGqAvTGbaX0sSv0MuumD4LBpzAHgC

/4Wgta2ydKDHoYmShKxBGOi+n4TTPYU5jOFX9YBDT4n5Q4JvWYcU+dGLXsDZ9K4y

wTHFa3zYmTCX1zGvjvVCJ0qyRCzTA1iWjAWvXmini0reJa6A+EbzcVWaWstSDFE8

cfHKf5rwy7s4RxHPdxoiNJQrtLqXNxg8KMHiR37t0utD6lvkolohiRas5+lQ659S

mFfyNz0g//1N66Owg5kpRf/r4/yNfQBA5N/yMbAFIbvLidrE1IM=

=llTN

—–END PGP SIGNATURE—–