Cisco Secure Firewall Management Center vulnerabilities

CVE-2026-20131 [CRITICAL] CWE-502 CVE-2026-20131: A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root on an affected device. This vulnerability is due to insecure deserialization of a user-supplied Java byte stream. An attacker could exploit this vuln

CVE-2026-20079 [CRITICAL] CWE-288 CVE-2026-20079: A vulnerability in the web interface of Cisco Secure Firewall Management Center (FMC) Software could A vulnerability in the web interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to bypass authentication and execute script files on an affected device to obtain root access to the underlying operating system. This vulnerability is due to an improper system process that is created at b

CVE-2026-20002 [HIGH] CWE-89 CVE-2026-20002: A vulnerability in the web-based management interface of Cisco Secure FMC Software could allow an au A vulnerability in the web-based management interface of Cisco Secure FMC Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to inadequate validation of user-supplied input. An attacker could exploit this vulnerability by sending crafted requests to an affected device

CVE-2026-20001 [MEDIUM] CWE-89 CVE-2026-20001: A vulnerability in the REST API of Cisco Secure FMC Software could allow an authenticated, remote at A vulnerability in the REST API of Cisco Secure FMC Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to inadequate validation of user-supplied input. An attacker could exploit this vulnerability by sending crafted requests to an affected device. A successful expl

CVE-2026-20044 [MEDIUM] CWE-269 CVE-2026-20044: A vulnerability in the lockdown mechanism of Cisco Secure Firewall Management Center (FMC) Software A vulnerability in the lockdown mechanism of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, local attacker to perform arbitrary commands as root. This vulnerability is due to insufficient restrictions on remediation modules while in lockdown mode. An attacker could exploit this vulnerability by sending crafted i

CVE-2026-20003 [MEDIUM] CWE-89 CVE-2026-20003: A vulnerability in the REST API of Cisco Secure FMC Software could allow an authenticated, remote at A vulnerability in the REST API of Cisco Secure FMC Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to inadequate validation of user-supplied input. An attacker could exploit this vulnerability by sending crafted requests to an affected device. A successful explo

CVE-2026-20018 [MEDIUM] CWE-27 CVE-2026-20018: A vulnerability in the sftunnel functionality of Cisco Secure Firewall Management Center (FMC) Softw A vulnerability in the sftunnel functionality of Cisco Secure Firewall Management Center (FMC) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, remote attacker with administrative privileges to write arbitrary files as root on the underlying operating system. This vulnerability is due to insufficient val

CVE-2024-20340 [MEDIUM] CWE-89 CVE-2024-20340: A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software, formerly Firepower Management Center Software, could allow an authenticated, remote attacker to perform an SQL injection attack against an affected device. To exploit this vulnerability, an attacker must have a valid account on the device