CVE-2026-20191

Summary

A vulnerability in Cisco Catalyst Center could allow an unauthenticated, remote attacker to read arbitrary files from a restricted container. 

This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to read arbitrary files from a restricted container of the affected device.

Affected Software

VendorProductVersion RangeStatus
CiscoCisco Catalyst Center2.3.7.0-VAaffected
CiscoCisco Catalyst Center2.3.7.5-VAaffected
CiscoCisco Catalyst Center2.3.7.6-VAaffected
CiscoCisco Catalyst Center2.3.7.7-VAaffected
CiscoCisco Catalyst Center2.3.7.9-VAaffected
CiscoCisco Catalyst Center3.1.3affected
CiscoCisco Catalyst Center3.1.3-VAaffected
CiscoCisco Catalyst Center2.3.7.10-VAaffected
CiscoCisco Catalyst Center3.1.5affected
CiscoCisco Catalyst Center3.1.5-VAaffected
CiscoCisco Catalyst Center3.1.5-VA on AWSaffected
CiscoCisco Catalyst Center3.1.5-RevUpaffected
CiscoCisco Catalyst Center3.1.6affected
CiscoCisco Catalyst Center3.1.6-VAaffected
CiscoCisco Catalyst Center3.1.6-BETAaffected
CiscoCisco Catalyst Center3.1.6-GSMU100affected
CiscoCisco Catalyst Center3.1.6-VA-GSMU100affected

Weaknesses

  • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References