CVE-2026-20131
Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data Vulnerability
CVSS
—
Sin CVSS
EPSS
27.6%
p98
KEV
SÍ
19 mar 2026
Exploit Today
79
0-100
Publicado: — · Última mod.: —
Producto
Cisco / Secure Firewall Management Center (FMC)
Vulnerabilidad
Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data Vulnerability
Añadido a KEV
19 mar 2026
Remediar antes de
22 mar 2026
Uso conocido en ransomware
Sí
Descripción resumida
Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management contain a deserialization of untrusted data vulnerability in the web-based management interface that could allow an unauthenticated, remote attacker to execute arbitrary Java code as root on an affected device.
Acción requerida
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Notas
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-rce-NKhnULJh ; https://nvd.nist.gov/vuln/detail/CVE-2026-20131
Sin CVEs relacionados por CWE o producto.