Cisco security patch release for CVE-2026-20184
Security Patch Release
Summary
Hide ▲
Show ▼
Cisco released patches for four critical flaws affecting Identity Services Engine (ISE), ISE-PIC, and Webex Services, closing paths to arbitrary code execution and user impersonation. The bulletin covers CVE-2026-20184, CVE-2026-20147, CVE-2026-20180, and CVE-2026-20186, including bugs that can be triggered with crafted HTTP requests or an SSO certificate issue. CVE-2026-20184 is cloud-based and requires SSO customers to upload a new IdP SAML certificate to Control Hub, while the ISE fixes are available in specific patched releases. Cisco said it is not aware of exploitation in the wild.
Related Happenings
Cisco security patch release for CVE-2026-20245
Security Patch Release
H score38
First: 25.06.2026 00:29
Last: 25.06.2026 00:29
Sources 1
About this happening:
Cisco released **security updates** for **Cisco Catalyst SD-WAN** after **CVE-2026-20245** was linked to root-level command execution, and customers were told to move to fixed sof...
Cisco security patch release for CVE-2026-20245
Security Patch ReleaseAbout this happening: Cisco released **security updates** for **Cisco Catalyst SD-WAN** after **CVE-2026-20245** was linked to root-level command execution, and customers were told to move to fixed sof...
Palo Alto Networks GlobalProtect log search guidance for CVE-2026-0257
Advisory/Mitigation
H score35
First: 15.06.2026 09:17
Last: 15.06.2026 09:17
Sources 1
About this happening:
Palo Alto Networks is urging **GlobalProtect** customers to search logs for **successful gateway-connected events** tied to **CVE-2026-0257**, a step that can expose possible unau...
Palo Alto Networks GlobalProtect log search guidance for CVE-2026-0257
Advisory/MitigationAbout this happening: Palo Alto Networks is urging **GlobalProtect** customers to search logs for **successful gateway-connected events** tied to **CVE-2026-0257**, a step that can expose possible unau...
Check Point VPN CVE-2026-50751 targeted exploitation wave
Exploitation Wave
H score47
First: 08.06.2026 17:17
Last: 08.06.2026 17:17
Sources 1
About this happening:
**CVE-2026-50751** is an **active exploitation wave** against **Check Point Remote Access VPN** and **Mobile Access** deployments that use **deprecated IKEv1**. The flaw is an **a...
Check Point VPN CVE-2026-50751 targeted exploitation wave
Exploitation WaveAbout this happening: **CVE-2026-50751** is an **active exploitation wave** against **Check Point Remote Access VPN** and **Mobile Access** deployments that use **deprecated IKEv1**. The flaw is an **a...
Check Point security patch release for CVE-2026-50751
Security Patch Release
H score48
First: 08.06.2026 16:05
Last: 08.06.2026 16:05
Sources 1
About this happening:
**Check Point** released **security updates** to patch **CVE-2026-50751** in **Remote Access VPN** and **Mobile Access** deployments. The update addressed a **critical authenticat...
Check Point security patch release for CVE-2026-50751
Security Patch ReleaseAbout this happening: **Check Point** released **security updates** to patch **CVE-2026-50751** in **Remote Access VPN** and **Mobile Access** deployments. The update addressed a **critical authenticat...
SolarWinds Serv-U advisory and mitigations for CVE-2026-28318
Advisory/Mitigation
H score52
First: 06.06.2026 11:14
Last: 06.06.2026 11:14
Sources 1
About this happening:
**SolarWinds Serv-U** mitigation guidance now covers **CVE-2026-28318**, reducing **unauthenticated DoS** risk from specially crafted POST requests. SolarWinds says the flaw is ad...
SolarWinds Serv-U advisory and mitigations for CVE-2026-28318
Advisory/MitigationAbout this happening: **SolarWinds Serv-U** mitigation guidance now covers **CVE-2026-28318**, reducing **unauthenticated DoS** risk from specially crafted POST requests. SolarWinds says the flaw is ad...
Timeline
-
16.04.2026 14:27 2 articles · 2mo ago
Cisco releases patches for critical ISE and Webex Services flaws
Mitigation Patch UpdateCisco released patches for four critical vulnerabilities in Identity Services Engine (ISE), ISE-PIC, and Webex Services: CVE-2026-20184, CVE-2026-20147, CVE-2026-20180, and CVE-2026-20186. The flaws could let a remote attacker impersonate users, execute arbitrary code or commands, and in single-node ISE deployments cause the affected node to become unavailable, creating a DoS condition. CVE-2026-20184 is cloud-based and requires no customer action, while SSO customers should upload a new IdP SAML certificate to Control Hub and ISE customers should move to the fixed releases; Cisco said it is not aware of exploitation in the wild.
Show sources
- Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution — thehackernews.com — 16.04.2026 14:27
- Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution — thehackernews.com — 16.04.2026 14:27