Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution
Cisco patches four critical CVEs in Identity Services Engine and Webex with CVSS scores up to 9.9 — code execution and user impersonation risks addressed.
What’s new: Cisco has released patches for four critical vulnerabilities affecting Identity Services Engine (ISE) and Webex Services that could lead to arbitrary code execution and user impersonation. The vulnerabilities include CVE-2026-20184, CVE-2026-20147, CVE-2026-20180, and CVE-2026-20186, with CVSS scores ranging from 9.8 to 9.9.
Who’s affected
Organizations using Cisco Identity Services Engine (ISE) and Webex Services are at risk, particularly those with versions earlier than the specified patched releases.
What to do
- For CVE-2026-20184: No action required as it is cloud-based, but users of SSO should upload a new identity provider (IdP) SAML certificate to Control Hub.
- For CVE-2026-20147: Upgrade to Cisco ISE or ISE-PIC Release 3.1 (Patch 11), 3.2 (Patch 10), 3.3 (Patch 11), 3.4 (Patch 6), or 3.5 (Patch 3).
- For CVE-2026-20180 and CVE-2026-20186: Upgrade to Cisco ISE Release 3.2 (Patch 8), 3.3 (Patch 8), 3.4 (Patch 4), or ensure you are on 3.5 (not vulnerable).
