Cisco informuje o krytycznych podatnościach. (P26-112)

25 marca 2026 r. firma Cisco opublikowała komunikat bezpieczeństwa w celu usunięcia luk w zabezpieczeniach następujących produktów:

Opis	Numer CVE	Krytyczność	CVSS
Cisco IOS XE Software for Catalyst 9000 Series Switches DHCP Snooping Denial of Service Vulnerability	CVE-2026-20084	Wysoka	8.6
Cisco IOS XE Wireless Controller Software for the Catalyst CW9800 Family CAPWAP Denial of Service Vulnerability	CVE-2026-20086	Wysoka	8.6
Cisco IOS, IOS XE, Secure Firewall Adaptive Security Appliance, and Secure Firewall Threat Defense Software IKEv2 Denial of Service Vulnerability	CVE-2026-20012	Wysoka	8.6
Cisco IOS Software and IOS XE Software Release 3E HTTP Server Denial of Service Vulnerability	CVE-2026-20125	Wysoka	7.7
Cisco IOS XE Software TLS Memory Exhaustion Denial of Service Vulnerability	CVE-2026-20004	Wysoka	7.4
Cisco IOS XE Software for Cisco Catalyst and Rugged Series Switches Secure Boot Bypass Vulnerability	CVE-2026-20104	Wysoka	6.1
Cisco IOS XE Software Denial of Service Vulnerability	CVE-2026-20110	Średnia	6.5
Cisco IOS XE Software Secure Copy Protocol Server Denial of Service Vulnerability	CVE-2026-20083	Średnia	6.5
Cisco IOS XE Software Secure Channel for Meraki Information Disclosure Vulnerability	CVE-2026-20115	Średnia	6.1
Cisco IOS XE Software Lobby Ambassador Privilege Escalation Vulnerability	CVE-2026-20114	Średnia	5.4
Cisco IOx Application Hosting Environment Carriage Return Line Feed Injection Vulnerability	CVE-2026-20113	Średnia	5.3
Cisco IOx Application Hosting Environment Stored Cross-Site Scripting Vulnerability	CVE-2026-20112	Średnia	4.8