The flaw is tracked as CVE-2026-20230 and carries a CVSS base score of 8.6. Cisco published the advisory and patches on June 3, when it stated it was not aware of any malicious use of the vulnerability at the time of disclosure.
“This vulnerability is due to improper input validation for specific HTTP requests,” Cisco said in the advisory. “An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device.”
The flaw could allow an unauthenticated, remote attacker to “conduct server-side request forgery (SSRF) attacks through an affected device,” the advisory said. A successful exploit could let the attacker write files to the underlying operating system and elevate privileges to root, it added.
