CVE-2026-20092 MEDIUM

CVE-2026-20092: Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability

Vendor Cisco
Product Cisco Intersight Virtual Appliance
Weakness CWE-732
Published January 21, 2026
Last update February 26, 2026

CVSS base score

6.0/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

What the vulnerability does

01Description

A vulnerability in the read-only maintenance shell of Cisco Intersight Virtual Appliance could allow an authenticated, local attacker with administrative privileges to elevate privileges to root on the virtual appliance. This vulnerability is due to improper file permissions on configuration files for system accounts within the maintenance shell of the virtual appliance. An attacker could exploit this vulnerability by accessing the maintenance shell as a read-only administrator and manipulating system files to grant root privileges. A successful exploit could allow the attacker to elevate their privileges to root on the virtual appliance and gain full control of the appliance, giving them the ability to access sensitive information, modify workloads and configurations on the host system, and cause a denial of service (DoS).

Key dates

02Disclosure timeline

January 21, 2026 CVE published
February 26, 2026 Record updated

Related vulnerabilities

04Related CVE