Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2026-20190
Analyzed
More InfoOfficial Page
Source-psirt@cisco.com
View Known Exploited Vulnerability (KEV) details
Published At-17 Jun, 2026 | 17:16
Updated At-22 Jun, 2026 | 14:30

A vulnerability in Cisco ISE and ISE-PIC could allow an unauthenticated, remote attacker to view sensitive information on an affected device. This vulnerability is due to improper authorization checks when a resource is accessed. An attacker could exploit this vulnerability by sending crafted traffic to an affected device. A successful exploit could allow the attacker to gain access to sensitive information, including hashed credentials that could be used in future attacks.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
N/A
Type: Secondary
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Type: N/A
Version:
Base score:
Base severity: N/A
Vector:
CPE Matches

Cisco Systems, Inc.
cisco
>>identity_services_engine>>3.4.0
cpe:2.3:a:cisco:identity_services_engine:3.4.0:-:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine>>3.4.0
cpe:2.3:a:cisco:identity_services_engine:3.4.0:patch1:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine>>3.4.0
cpe:2.3:a:cisco:identity_services_engine:3.4.0:patch2:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine>>3.4.0
cpe:2.3:a:cisco:identity_services_engine:3.4.0:patch3:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine>>3.4.0
cpe:2.3:a:cisco:identity_services_engine:3.4.0:patch4:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine>>3.4.0
cpe:2.3:a:cisco:identity_services_engine:3.4.0:patch5:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine>>3.5.0
cpe:2.3:a:cisco:identity_services_engine:3.5.0:-:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine>>3.5.0
cpe:2.3:a:cisco:identity_services_engine:3.5.0:patch1:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine>>3.5.0
cpe:2.3:a:cisco:identity_services_engine:3.5.0:patch2:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine_passive_identity_connector>>3.4.0
cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.4.0:-:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine_passive_identity_connector>>3.4.0
cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.4.0:patch1:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine_passive_identity_connector>>3.4.0
cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.4.0:patch2:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine_passive_identity_connector>>3.4.0
cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.4.0:patch3:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine_passive_identity_connector>>3.4.0
cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.4.0:patch4:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine_passive_identity_connector>>3.4.0
cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.4.0:patch5:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine_passive_identity_connector>>3.5.0
cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.5.0:-:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine_passive_identity_connector>>3.5.0
cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.5.0:patch1:*:*:*:*:*:*
Cisco Systems, Inc.
cisco
>>identity_services_engine_passive_identity_connector>>3.5.0
cpe:2.3:a:cisco:identity_services_engine_passive_identity_connector:3.5.0:patch2:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-285Secondarypsirt@cisco.com
CWE ID: CWE-285
Type: Secondary
Source: psirt@cisco.com
Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References
HyperlinkSourceResource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-G5WP8vvpsirt@cisco.com
Vendor Advisory
Hyperlink: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multi-G5WP8vv
Source: psirt@cisco.com
Resource:
Vendor Advisory
Change History
0Changes found

Details not found