VDB

CVE-2026-20147

CVE-2026-20147 PUBLISHED CVSS 9.899999618530273 CRITICAL

CVE-2026-20186: A remote attacker with low privileges and without user interaction can inject commands to escalate privileges to root. If the ISE deployment is single-node, then that can cause Denial-of-Service (DoS). CVE-2026-20147: A remote attacker with low privileges and without user interaction can send crafted HTTP requests to execute arbitrary commands on the underlying operating system to elevate their privileges to root. If the ISE deployment is single-node, then that can cause Denial-of-Service (DoS). CVE-2026-20180: A remote attacker with low privileges and no user interaction can send crafted HTTP requests to execute code remotely because of insufficient validation of user-supplied input in HTTP request handling. That way they can raise their privileges to root and compromise the system.

EPSS 0.32% · 55.5th percentile

Risk Scores

CVSS 3.1
9.899999618530273
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS Score
0.32%
55.5th percentile

Affected Products

VendorProductVersions
CiscoCisco Identity Services Engine (ISE) versions 3.x.x (3.1.0 - 3.4.0, and 3.1.0 p1-p10, 3.2.0 p1-p7, 3.3 Patches 1-7, and 3.4 Patches 1-3)

Exploit Intelligence

Timeline

  • Apr 15, 2026 CVE Published
  • Apr 15, 2026 PoC Published
  • Apr 15, 2026 PoC Published
  • Apr 15, 2026 PoC Published
  • Apr 15, 2026 PoC Published
  • Apr 16, 2026 Security Advisory
  • Apr 16, 2026 CVE Updated
  • May 18, 2026 EPSS Score
  • May 19, 2026 EPSS Score
  • May 20, 2026 EPSS Score
  • May 21, 2026 EPSS Score
  • May 22, 2026 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›