CVE-2026-20136 — Vulnetix

CVE-2026-20136 PUBLISHED CVSS 8.399999618530273 HIGH

A vulnerability in the CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, local attacker with administrative privileges to perform a command injection attack on the underlying operating system and elevate privileges to root. This vulnerability is due to insufficient validation of user supplied input. An attacker could exploit this vulnerability by providing crafted input to a specific CLI command. A successful exploit could allow the attacker to elevate their privileges to root on the underlying operating system.

EPSS 0.04% · 12.4th percentile

Risk Scores

CVSS 4.0

8.399999618530273

CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.04%

12.4th percentile

Affected Products

Vendor	Product	Versions
Cisco	Cisco Identity Services Engine Software	3.1.0, 3.1.0 p3, 3.1.0 p2

Exploit Intelligence

CIRCL seen: CVE-2026-20136 (circl-sighting)
cisco-sa-ise-cmd-inj-5WSJcYJB (circl)

Timeline

Apr 15, 2026 CVE Published
Apr 15, 2026 PoC Published
Apr 16, 2026 Security Advisory
Apr 16, 2026 CVE Updated
May 18, 2026 EPSS Score
May 19, 2026 EPSS Score
May 20, 2026 EPSS Score
May 21, 2026 EPSS Score
May 22, 2026 EPSS Score
May 23, 2026 EPSS Score
May 24, 2026 EPSS Score
May 25, 2026 EPSS Score

References

cisco-sa-ise-cmd-inj-5WSJcYJB url
https://nvd.nist.gov/vuln/detail/CVE-2026-20136 advisory

Open in Interactive Console →