CVE-2026-20036

Name of the Vulnerable Software and Affected Versions Cisco UCS Manager Software (affected versions not specified)

Description A flaw exists in the Command Line Interface (CLI) and web-based management interface of Cisco UCS Manager Software that could permit an authenticated, remote attacker possessing valid administrative privileges to execute arbitrary commands on the affected device's operating system. This issue stems from inadequate validation of user-supplied command arguments. An attacker could exploit this by authenticating to a device and submitting specially crafted input to a vulnerable command. Successful exploitation could grant the attacker the ability to execute commands on the operating system with root-level privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.