CVE-2026-20111

Name of the Vulnerable Software and Affected Versions Cisco Prime Infrastructure (affected versions not specified)

Description A flaw exists in the web-based management interface that could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack against users. This occurs because the interface does not properly validate user-supplied input. An attacker could inject malicious code into specific data fields. A successful exploit may allow the attacker to execute arbitrary script code within the interface or gain access to sensitive, browser-based information. Administrative credentials are required for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.