

Cisco disclosed multiple vulnerabilities affecting Cisco RoomOS and Cisco Identity Services Engine (ISE). These vulnerabilities could allow attackers to bypass access controls, exploit improper input validation, trigger memory corruption, access or transmit sensitive data insecurely, manipulate system resources, cause unexpected application behavior, or perform path traversal attacks to read or delete arbitrary files on affected systems. Successful exploitation could allow for information disclosure, arbitrary file access or deletion, security control bypass, memory corruption, and service disruption.
CVEs: CVE-2026-20150, CVE-2026-20153, CVE-2026-20156, CVE-2026-20157, CVE-2026-20158, CVE-2026-20187, CVE-2026-20146
All government and business entity sizes: High
CVE-2026-20150 (CVSS 8.8) - Improper access control; authorization/authentication bypass.
CVE-2026-20156 (CVSS 8.1) - Improper restriction of memory buffer operations; buffer overflow and out-of-bounds writes.
CVE-2026-20153 (CVSS 7.5) - Improper input validation; path traversal and external path control.
CVE-2026-20157 (CVSS 7.5) - Missing encryption; cleartext transmission of sensitive data.
CVE-2026-20158 (CVSS 7.5) - Improper resource lifecycle control; uninitialized variables and null pointer issues.
CVE-2026-20187 (CVSS 7.5) - Improper handling of exceptional conditions; uncaught exceptions.
CVE-2026-20146 (CVSS 5.5) - Path traversal in Cisco ISE and ISE-PIC; authenticated remote attacker with administrative credentials can read or delete arbitrary files.
RoomOS 11.x: on-premises 11.32.6.0, cloud RoomOS June 2026 (26.7.1.7) | RoomOS 26.x: on-premises 26.5.2.2. ISE 3.4: Patch 7 (Sep 2026) or hot patch available now | ISE 3.5: Patch 4 (Sep 2026) or hot patch available now. No workarounds available.
Apply Cisco security updates and upgrade to fixed releases as soon as operationally feasible. Implement the Principle of Least Privilege and regularly review administrative user accounts and permissions. Monitor authentication and system logs for suspicious activity. Forward logs to a centralized platform. Use vulnerability management solutions to verify remediation status.
Trusted by clients worldwide






Led by human expertise and powered by the VisionX platform, we provide you with a 24/7 unbeatable Managed Detection & Response capability giving you transparent and consolidated security solutions.




