THREAT OPS › Threat News › Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability
Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability
<p>A vulnerability in the CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, local attacker with administrative privileges to perform a command injection attack on the underlying operating system and elevate privileges to <em>root</em>.</p> <p>This vulnerability is due to insufficient validation of user supplied input.
Indicators of compromise
- CVE-2026-20136cve