[Vulnerability Alert] Critical Security Vulnerability in Cisco Smart Software Manager On-Prem (CVE-2026-20160)

• Subject: [Vulnerability Alert] Critical Security Vulnerability in Cisco Smart Software Manager On-Prem (CVE-2026-20160)

• Description:
  • [cite_start]Forwarded from Taiwan Computer Emergency Response Team / Coordination Center (TWCERT/CC) Security Alert: TWCERTCC-200-202604-00000003. [cite: 1]
  • Cisco recently released a critical security advisory for Smart Software Manager (CVE-2026-20160, CVSS: 9.8). [cite_start]This vulnerability may allow an unauthenticated remote attacker to execute arbitrary commands on the underlying operating system. [cite: 1]
• Affected Platforms:
  • [cite_start]Cisco Smart Software Manager On-Prem versions 9-202502 to 9-202510 (inclusive). [cite: 1]
• Recommended Actions:
  • [cite_start]Please update to Cisco Smart Software Manager On-Prem version 9-202601 (inclusive) or later. [cite: 1]
• Reference Material:
  1. [cite_start]https://www.twcert.org.tw/tw/cp-169-10822-dad9b-1.html [cite: 1]

Computer and Communication Center
Network Systems Division