Description
A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to perform path traversal attacks on the underlying operating system and read arbitrary files. To exploit this vulnerability, the attacker must have valid administrative credentials.

This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected system. A successful exploit could allow the attacker to access sensitive files on the affected system.
Published: 2026-04-15
Score: 4.9 Medium
EPSS: 9.2% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A flaw in Cisco Identity Services Engine (ISE) and its Passive Identity Connector (ISE‑PIC) allows an authenticated administrator to perform path traversal on the underlying OS. The vulnerability arises from insufficient validation of file paths in HTTP requests, enabling the attacker to request arbitrary files after authenticating. The consequence is potential disclosure of sensitive configuration or credential files, compromising confidentiality for privileged accounts.

Affected Systems

The vulnerability affects Cisco ISE and Cisco ISE‑PIC across all released versions until a patch is applied; no specific version information is provided.

Risk and Exploitability

The CVSS score of 4.9 indicates moderate impact, while the EPSS score of 9% indicates a moderate likelihood of exploitation. The flaw is not listed in the CISA KEV catalog. Exploitation requires valid administrative credentials, so the risk is limited to environments where such access exists. The CVE description does not mention publicly known exploits; the threat is primarily controlled by access management and timely patching.

Generated by OpenCVE AI on June 24, 2026 at 13:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Cisco ISE or ISE‑PIC patch that addresses the unchecked path traversal validation flaw.
  • Implement strict server‑side input validation: normalize or reject file paths containing '..' or absolute references, and enforce a whitelist of allowed directories to mitigate CWE‑22.
  • Limit administrative privileges to a minimal set of trusted users, enforce multi‑factor authentication, and monitor web server logs for repeated path traversal attempts.

Generated by OpenCVE AI on June 24, 2026 at 13:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 15 Apr 2026 21:15:00 +0000

Type Values Removed Values Added
First Time appeared Cisco
Cisco identity Services Engine Passive Identity Connector
Cisco identity Services Engine Software
Vendors & Products Cisco
Cisco identity Services Engine Passive Identity Connector
Cisco identity Services Engine Software

Wed, 15 Apr 2026 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 15 Apr 2026 16:30:00 +0000

Type Values Removed Values Added
Description A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to perform path traversal attacks on the underlying operating system and read arbitrary files. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected system. A successful exploit could allow the attacker to access sensitive files on the affected system.
Title Cisco Identity Services Engine Path Traversal Vulnerability
Weaknesses CWE-22
References
Metrics cvssV3_1

{'score': 4.9, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

Cisco Identity Services Engine Passive Identity Connector Identity Services Engine Software
cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published:

Updated: 2026-04-15T16:56:35.471Z

Reserved: 2025-10-08T11:59:15.385Z

Link: CVE-2026-20148

cve-icon Vulnrichment

Updated: 2026-04-15T16:56:30.594Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-04-15T17:17:02.637

Modified: 2026-06-17T10:17:12.280

Link: CVE-2026-20148

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T13:30:06Z

Weaknesses
  • CWE-22

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')