Cisco has disclosed multiple vulnerabilities in its infrastructure management software that could allow attackers to gain remote code execution, elevate privileges, and access confidential data. The flaws affect various Cisco IMC, NFVIS, EPNM and SSM On‑Prem versions across UCS, Secure Cloud, and Edge appliances. Specifically, Cisco IMC releases older than 6.0(1.250174), 4.3(2.260007), and 4.3(6.260017) on several server and appliance models are impacted. Cisco NFVIS versions before 4.15.5 and 4.18.3, EPNM before 8.1.2, and SSM On‑Prem before 9-202601 also contain the same issues. The vulnerabilities are identified as CVE‑2026‑20093 through CVE‑2026‑20160. Users are urged to consult Cisco’s security advisories linked in the official CERT‑FR notice for patch guidance. All affected systems should apply the latest updates as soon as possible.
Summary of content from
Made by AI. If you spot anything of concern write us at contact@cybach.com. We’ll promptly correct irregularities.