Cisco Identity Services Engine Remote Code Execution and Information Disclosure Vulnerabilities
Cisco's June 19 advisory, rated Critical, covers multiple vulnerabilities in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) that could let a remote attacker achieve remote code execution or c.
At a glance
- Cisco disclosed critical-rated vulnerabilities CVE-2026-20181 and CVE-2026-20190 in ISE and ISE-PIC on June 19.
- The flaws could allow remote code execution or information disclosure by a remote attacker.
- Software updates are available and no workarounds exist.
VERDICT — CONFIRMED
Cisco published a Critical-rated advisory on June 19 covering multiple vulnerabilities in its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC), per Cisco PSIRT.
The flaws, tracked as CVE-2026-20181 and CVE-2026-20190, could let a remote attacker achieve remote code execution or conduct information disclosure attacks against affected systems, per the advisory.
Cisco has released software updates and says there are no workarounds, making patching the only remediation path per the advisory. Not included in the available summary: individual CVSS scores for the two CVEs, affected version ranges, and whether exploitation has been observed in the wild — details carried in the full advisory on Cisco's security center. Given the Critical rating and the network-access-control role ISE plays in enterprise environments, the advisory's stated next step for customers is applying the released software updates.
Key facts on file
- Cisco disclosed critical-rated vulnerabilities CVE-2026-20181 and CVE-2026-20190 in ISE and ISE-PIC on June 19.
- The flaws could allow remote code execution or information disclosure by a remote attacker.
- Software updates are available and no workarounds exist.