Updates for a medium-severity security vulnerability have been made available by Cisco This article explores vulnerability available cisco. The licensing feature contains the vulnerability, which is tracked as CVE-2026-20029.

It might make sensitive data accessible to a remote, authenticated attacker. Cisco stated that it is aware of the existence of a PoC exploit code and that there are no workarounds to fix the vulnerability. Two additional bugs resulting from the processing of Distributed Computing Environment Remote Procedure Call (DCE/RPC) requests were also fixed by the networking equipment company.

Cisco IOS XE software, Cisco Meraki software, Cisco Secure Firewall Threat Defense (FTD) software, and Cisco ISE or ISE-PIC Release 3.2-3.2 Patch 8 Cisco ISe or ISe-Pic Release 3,3-3.3 Patch 8.4 Patch 4 and 3.5-Not vulnerable are all impacted. In a Wednesday advisory, the company stated that users must update to the most recent version of the product in order to receive adequate protection. It also stated that there is no way to address the defect without doing so.

Whether the vulnerability has been used in the wild is unknown.