CVE-2026-20195

Name of the Vulnerable Software and Affected Versions Cisco ISE (affected versions not specified)

Description An issue in an identity management API endpoint allows an unauthenticated remote attacker to enumerate valid user accounts. By sending crafted requests to the affected endpoint and analyzing the differing error messages in the responses, an attacker can identify and compile a list of valid usernames on the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.