CVE-2026-20110

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software (affected versions not specified)

Description A flaw exists in the Cisco IOS XE Software Command Line Interface (CLI) that could allow a local, authenticated attacker to trigger a denial of service (DoS) condition on a vulnerable device. The issue stems from improper privilege association with the start maintenance command. An attacker can exploit this by accessing the management CLI with limited privileges and executing the start maintenance command. Successful exploitation places the device into maintenance mode, disabling interfaces and resulting in a DoS condition. A device administrator can restore operations by connecting to the CLI and using the stop maintenance command.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.