Bg ShapeBg Shape
THREAT INTELLIGENCE

Cisco Security Advisories - 16th July 2026

Cisco disclosed multiple vulnerabilities affecting Cisco RoomOS and Cisco Identity Services Engine (ISE). These vulnerabilities could allow attackers to bypass access controls, exploit improper input validation, trigger memory corruption, access or transmit sensitive data insecurely, manipulate system resources, cause unexpected application behavior, or perform path traversal attacks to read or delete arbitrary files on affected systems. Successful exploitation could allow for information disclosure, arbitrary file access or deletion, security control bypass, memory corruption, and service disruption.

CVEs: CVE-2026-20150, CVE-2026-20153, CVE-2026-20156, CVE-2026-20157, CVE-2026-20158, CVE-2026-20187, CVE-2026-20146

Risk

All government and business entity sizes: High

Cisco RoomOS Vulnerabilities

CVE-2026-20150 (CVSS 8.8) - Improper access control; authorization/authentication bypass.

CVE-2026-20156 (CVSS 8.1) - Improper restriction of memory buffer operations; buffer overflow and out-of-bounds writes.

CVE-2026-20153 (CVSS 7.5) - Improper input validation; path traversal and external path control.

CVE-2026-20157 (CVSS 7.5) - Missing encryption; cleartext transmission of sensitive data.

CVE-2026-20158 (CVSS 7.5) - Improper resource lifecycle control; uninitialized variables and null pointer issues.

CVE-2026-20187 (CVSS 7.5) - Improper handling of exceptional conditions; uncaught exceptions.

Cisco Identity Services Engine

CVE-2026-20146 (CVSS 5.5) - Path traversal in Cisco ISE and ISE-PIC; authenticated remote attacker with administrative credentials can read or delete arbitrary files.

Fixed Releases

RoomOS 11.x: on-premises 11.32.6.0, cloud RoomOS June 2026 (26.7.1.7) | RoomOS 26.x: on-premises 26.5.2.2. ISE 3.4: Patch 7 (Sep 2026) or hot patch available now | ISE 3.5: Patch 4 (Sep 2026) or hot patch available now. No workarounds available.

Recommendations

Apply Cisco security updates and upgrade to fixed releases as soon as operationally feasible. Implement the Principle of Least Privilege and regularly review administrative user accounts and permissions. Monitor authentication and system logs for suspicious activity. Forward logs to a centralized platform. Use vulnerability management solutions to verify remediation status.

Download the Full Report

Explore More of the Latest Threat Intelligence

Trusted by clients worldwide

Logo
Logo
Logo
Logo
Logo
Logo

Your 24/7 Security Partner

Led by human expertise and powered by the VisionX platform, we provide you with a 24/7 unbeatable Managed Detection & Response capability giving you transparent and consolidated security solutions.

Awards Image
Awards Image
Awards Image
Awards Image
Awards Image
Awards Image