Cisco issues emergency patches for critical firewall vulnerabilities

FOE CSO Online

Summary

Cisco has released emergency patches for critical vulnerabilities in its Secure Firewall Management Center (FMC) Software, addressing two 'perfect 10' rated flaws. These vulnerabilities, CVE-2026-20079 and CVE-2026-20131, allow unauthenticated root access and are critical due to their potential for exploitation.

IFF Assessment

FOE

The discovery and potential exploitation of critical vulnerabilities in widely used network devices pose a significant threat to organizations.

Severity

10.0 Critical

Defender Context

Defenders must prioritize patching these critical Cisco firewall vulnerabilities immediately, as they offer unauthenticated root access and are highly likely targets for attackers. Organizations should also consider network segmentation and access control to limit exposure of management interfaces to the internet.

Read Full Story →