Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Cisco Secure Workload REST API patch release (CVE-2026-20223)

Security Patch Release
First reported
Last updated
Happening score
H score 55
1 unique sources, 1 articles

Summary

Hide ▲

Cisco patched CVE-2026-20223, a CVSS 10.0 Secure Workload REST API flaw that could expose sensitive data and allow configuration changes across tenant boundaries. The update covers Cisco Secure Workload Cluster Software on SaaS and on-prem deployments. Customers on Release 3.10 and Release 4.0 must move to 3.10.8.3 or 4.0.3.17, while 3.9 and earlier require migration to a fixed release because no workaround exists.

Related Happenings

Cisco ThousandEyes and Nexus security patches

Security Patch Release
First: 21.05.2026 15:04 Last: 21.05.2026 15:04 Sources 1

About this happening: Cisco released patches for **three medium-severity vulnerabilities** affecting **ThousandEyes Virtual Appliance**, **ThousandEyes Enterprise Agent**, and **Nexus 3000/9000 switche...

Open Happening

Ivanti security patch release for CVE-2026-8043

Security Patch Release
First: 18.05.2026 13:54 Last: 18.05.2026 13:54 Sources 1

About this happening: **Ivanti, Fortinet, SAP, Broadcom, and n8n** released **security fixes** on **2026-05-18** for flaws that could enable **authentication bypass**, **remote code execution**, **SQL...

Open Happening

Cisco security patch release for CVE-2026-20182

Security Patch Release
First: 14.05.2026 20:45 Last: 14.05.2026 20:45 Sources 1

About this happening: Cisco released **updates** for **CVE-2026-20182**, a **maximum-severity authentication bypass** in **Catalyst SD-WAN Controller/Manager**, after the flaw was **exploited in limite...

Open Happening

Cisco security patch release for CVE-2026-20184

Security Patch Release
First: 16.04.2026 14:27 Last: 16.04.2026 14:27 Sources 1

About this happening: **Cisco** released patches for **four critical flaws** affecting **Identity Services Engine (ISE)**, **ISE-PIC**, and **Webex Services**, closing paths to **arbitrary code executi...

Open Happening

TP-Link security patch release for CVE-2025-15517

Security Patch Release
First: 25.03.2026 13:11 Last: 25.03.2026 13:11 Sources 1

About this happening: **TP-Link** released **security updates** for its **Archer NX** router series to close a critical authentication-bypass flaw that could let attackers upload firmware without loggi...

Open Happening

Timeline

  1. 22.05.2026 08:36 2 articles · 5d ago

    Cisco releases Secure Workload fixes for CVE-2026-20223

    Mitigation Patch Update

    Cisco rolled out updates for CVE-2026-20223, a CVSS score: 10.0 REST API vulnerability in Cisco Secure Workload Cluster Software on SaaS and on-prem deployments that could let an unauthenticated, remote attacker send a crafted API request, read sensitive information, and make configuration changes across tenant boundaries with the privileges of the Site Admin user. Cisco said Cisco Secure Workload Release 3.10 is fixed in 3.10.8.3, Cisco Secure Workload Release 4.0 is fixed in 4.0.3.17, and Cisco Secure Workload Release 3.9 and earlier must migrate to a fixed release because no workaround exists.

    Show sources
    Open in new tab
  2. 22.05.2026 08:36 1 articles · 5d ago

    Cisco discloses CVE-2026-20223 details

    Initial Disclosure

    Cisco disclosed CVE-2026-20223, a maximum-severity flaw in Secure Workload that arises from insufficient validation and authentication when accessing REST API endpoints. Cisco said the vulnerability could be exploited by sending a crafted API request to an affected endpoint, that it found the issue during internal security testing, and that there is no evidence of it being exploited in the wild.

    Show sources
    Open in new tab