Critical Cisco IMC Vulnerability Let Attackers Bypass Authentication
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
Cisco has recently disclosed a critical security flaw affecting its Integrated Management Controller (IMC)<\/a>, prompting the release of urgent software updates.<\/p>\n The vulnerability, officially tracked as CVE-2026-20093, has been assigned a critical Base CVSS score of 9.8, indicating the highest level of severity.<\/p>\n This security weakness is located in the password change functionality of the Cisco IMC software. The core issue stems from the system\u2019s incorrect processing of incoming password change requests.<\/p>\n By exploiting this flaw, a remote, unauthenticated attacker can send a\u00a0maliciously<\/a><\/span> crafted HTTP request directly to an affected device.<\/p>\n If the exploit is successful, the attacker can completely bypass standard authentication checks<\/a>. Once authentication is bypassed, the attacker can modify the passwords of any existing user on the system.<\/p>\n This includes the primary Admin account, which essentially allows the attacker to hijack the system and gain full administrative access<\/a> as that user.<\/p>\n The vulnerability impacts several Cisco hardware products if they are running a vulnerable release of the Cisco IMC software.<\/p>\n The affected standalone products include:<\/p>\n Furthermore, numerous Cisco appliances that rely on preconfigured versions of the affected UCS C-Series Servers are also at risk. If these appliances expose the Cisco IMC user interface, they are vulnerable.<\/p>\n This extensive list includes Application Policy Infrastructure Controller (APIC) Servers, Catalyst Center Appliances, Secure Firewall Management Center Appliances<\/a>, and Secure Network Analytics Appliances.<\/p>\n Cisco has confirmed that certain newer and differently configured products, such as UCS B-Series Blade Servers, UCS X-Series Modular Systems, and UCS C-Series M7 and M8 Rack Servers, remain unaffected by this flaw.<\/p>\n Currently, no temporary workarounds or mitigations are available to block this vulnerability. The only effective solution is to apply the official software updates provided by Cisco.<\/a><\/p>\n Administrators are strongly urged to immediately upgrade their affected systems to the fixed software releases.<\/p>\n The update process varies by device; for instance, upgrading the IMC on 5000 Series ENCS and Catalyst 8300 Series requires upgrading the underlying Cisco Enterprise NFV Infrastructure Software (NFVIS).<\/p>\n For standalone servers, administrators can typically use the\u00a0Cisco<\/a><\/span> Host Upgrade Utility (HUU) to install the fixed IMC releases.<\/a><\/p>\n Cisco has credited a security researcher for reporting the flaw and noted that there is currently no evidence of active exploitation or public announcements regarding malicious use of this vulnerability.<\/p>\n Follow us on Google News<\/a>, LinkedIn<\/a>, and X<\/a> for daily cybersecurity updates. Contact us<\/a> to feature your stories.<\/strong><\/p>\n The post Critical Cisco IMC Vulnerability Let Attackers Bypass Authentication<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\nAffected Systems and Hardware<\/strong><\/h2>\n
\n