CVE-2026-20037

Name of the Vulnerable Software and Affected Versions Cisco UCS Manager Software (affected versions not specified)

Description A flaw exists in the NX-OS CLI privilege levels of Cisco UCS Manager Software that could allow an authenticated, local attacker with read-only privileges to modify files and perform unauthorized actions on an affected system. The issue stems from unnecessary privileges granted to users. An attacker could exploit this by authenticating as a read-only user and connecting to the NX-OS CLI, potentially creating or overwriting files in the file system or performing limited privileged actions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.