THREAT OPS › Threat News › Cisco ThousandEyes Enterprise Agent BrowserBot Command Injection Vulnerability
Cisco ThousandEyes Enterprise Agent BrowserBot Command Injection Vulnerability
<p>A vulnerability in the BrowserBot component of Cisco ThousandEyes Enterprise Agent could have allowed an authenticated, remote attacker to execute arbitrary commands on Agents on behalf of the BrowserBot synthetics orchestration process. Cisco has addressed this vulnerability in the Cisco ThousandEyes Enterprise Agent, and no customer action is needed.</p> <p>This vulnerability was due to insuf
MITRE ATT&CK techniques
- CredentialsT1589.001
Indicators of compromise
- CVE-2026-20206cve