CVE-2026-20131

Name of the Vulnerable Software and Affected Versions Cisco Secure Firewall Management Center (FMC) Software (affected versions not specified)

Description A flaw exists in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software that could allow a remote attacker who does not need to be authenticated to execute arbitrary Java code with root privileges on a vulnerable device. This is due to insecure deserialization of a user-supplied Java byte stream. An attacker could exploit this by sending a specially crafted serialized Java object to the web-based management interface. Successful exploitation could allow the attacker to execute code and gain root access. It is noted that if the FMC management interface does not have public internet access, the attack surface is reduced. Approximately 62,000 services are estimated to be exposed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.