CVE-2026-20193

Name of the Vulnerable Software and Affected Versions Cisco ISE (affected versions not specified)

Description Improper role-based access control (RBAC) permissions on the RADIUS Policy API endpoints allow an authenticated remote attacker with read-only Administrator privileges to gain unauthorized read access to sensitive RADIUS Policy details. This is achieved by bypassing the web-based management interface and directly calling the affected API endpoints.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.