Cisco IMC Command Injection and RCE Vulnerabilities (CVE-2026-20094/95/96/97) Advisory

Vulnerability Overview Title: Cisco Integrated Management Controller (IMC) Command Injection and Remote Code Execution Vulnerabilities (Cisco 集成管理控制器命令注入和远程代码执行漏洞) Severity: High (高) CVSS Scores: CVE-2026-20094: 8.9 CVE-2026-20095 / CVE-2026-20096: 6.5 CVE-2026-20097: 6.5 Vulnerability Description: CVE-2026-20094: Allows an authenticated, remote attacker to execute arbitrary commands with read-only privileges. This vulnerability is due to improper validation of user-supplied input. CVE-2026-20095 & CVE-2026-20096: Allows an authenticated, remote attacker to execute arbitrary commands with administrator privileges. This vulnerability is due to improper validation of user-supplied input. CVE-2026-20097: Allows an authenticated, remote attacker to execute arbitrary code with administrator privileges. This vulnerability is due to improper validation of user-supplied input. Exploitation: Attackers can exploit these vulnerabilities by sending crafted commands or HTTP requests. Workarounds: None (No workarounds available). Affected Products Affected Cisco products include all products running vulnerable versions of Cisco IMC, primarily: 5000 Series ENCS Catalyst 8300 Series Edge uCPE UCS C-Series M5 and M6 Rack Servers (standalone mode) UCS E-Series Servers M3 UCS E-Series Servers M6 UCS S-Series Storage Servers (standalone mode) Products based on pre-configured versions of Cisco UCS C-Series Servers (such as APIC Servers, Business Edition 6000/7000, Catalyst Center, Cloud Services Platform, Nexus Dashboard Appliances, etc.). Products Not Affected: UCS B-Series Blade Servers UCS C-Series M7 and M8 Rack Servers UCS X-Series Modular System Unified Edge Specific versions of 5000 Series ENCS, UCS E-Series Servers M3, and UCS S-Series Storage Servers (for specific CVEs). Remediation Cisco recommends upgrading to the following fixed software versions: Remediation Notes for Other Pre-configured Products: Cisco Telemetry Broker Appliances: Apply firmware update . IEC6400 Edge Compute Appliances: Apply HUI upgrade . Secure Endpoint Private Cloud Appliances: Upgrade to Release 4.2.5 or later and follow the steps outlined in the TechNotes. Secure Firewall Management Center Appliances: Apply . Secure Malware Analytics Appliances: Update firmware using the Out-of-Band Firmware Update (OOS) procedure. Secure Network Analytics Appliances: For M5, apply patch . Secure Network Server Appliances**: Apply BIOS and HUI upgrades; refer to the firmware upgrade guide.

Goal Reached Thanks to every supporter — we hit 100%!

Cisco IMC Command Injection and RCE Vulnerabilities (CVE-2026-20094/95/96/97) Advisory