Home / Vulnerability Intelligence / CVE-2026-20079

CVE-2026-20079 - Vulnerability Analysis

CriticalCVSS: 10.0

Last Updated: March 4, 2026

Cisco Secure Firewall Management Center - Authentication Bypass

Published: March 4, 2026Updated: March 4, 2026Remote Exploitable

Overview

Cisco Secure Firewall Management Center Software contains an authentication bypass caused by improper system process creation at boot, letting unauthenticated remote attackers execute scripts and gain root access, exploit requires crafted HTTP requests.

Severity & Score

Severity: Critical

CVSS Score: 10.0

Impact

Unauthenticated remote attackers can gain root access by executing scripts, leading to full system compromise.

Mitigation

Update to the latest available version.

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-onprem-fmc-authbypass-5JPp45V2

Related Resources

Details

CVE ID: CVE-2026-20079
Severity: Critical
CVSS Score: 10.0
Type: broken_authentication
Status: new

CWE

CWE-288

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H