CVE-2026-20080 MEDIUM

CVE-2026-20080: Cisco IEC6400 Edge Compute Appliance SSH Denial of Service Vulnerability

Vendor Cisco
Product Cisco Ultra-Reliable Wireless Backhaul
Weakness CWE-400
Published January 21, 2026
Last update January 21, 2026

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

What the vulnerability does

01Description

A vulnerability in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software could allow an unauthenticated, remote attacker to cause the SSH service to stop responding. This vulnerability exists because the SSH service lacks effective flood protection. An attacker could exploit this vulnerability by initiating a denial of service (DoS) attack against the SSH port. A successful exploit could allow the attacker to cause the SSH service to be unresponsive during the period of the DoS attack. All other operations remain stable during the attack.

Key dates

02Disclosure timeline

January 21, 2026 CVE published
January 21, 2026 Record updated