CVE-2026-20080

Summary

A vulnerability in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software could allow an unauthenticated, remote attacker to cause the SSH service to stop responding.

This vulnerability exists because the SSH service lacks effective flood protection. An attacker could exploit this vulnerability by initiating a denial of service (DoS) attack against the SSH port. A successful exploit could allow the attacker to cause the SSH service to be unresponsive during the period of the DoS attack. All other operations remain stable during the attack.

Affected Software

VendorProductVersion RangeStatus
CiscoCisco Ultra-Reliable Wireless Backhaul1.0.0affected
CiscoCisco Ultra-Reliable Wireless Backhaul1.1.0affected
CiscoCisco Ultra-Reliable Wireless Backhaul1.0.2affected
CiscoCisco Ultra-Reliable Wireless Backhaul1.0.1affected

Weaknesses

  • CWE-400: Uncontrolled Resource Consumption

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References