Date Posted: 2026/03/05
[Vulnerability Alert] 2 Critical Security Vulnerabilities Found in Cisco Firewall Systems
- Subject Explanation: [Vulnerability Alert] 2 Critical Security Vulnerabilities Found in Cisco Firewall Systems
- Content Description:
- Forwarding Taiwan Computer Emergency Response Team / Coordination Center (TWCERT/CC) Security Alert TWCERTCC-200-202603-00000004
- Cisco Secure Firewall Management Center (FMC) is a centralized management platform for unified management and monitoring of Cisco firewall products. It provides comprehensive threat defense visibility and supports policy creation, event analysis, traffic monitoring, and device configuration. Recently, Cisco released a critical security advisory.
- [CVE-2026-20131, CVSS: 10.0] This vulnerability exists in the web management interface of FMC. An unauthenticated remote attacker could execute arbitrary Java code as root.
- [CVE-2026-20079, CVSS: 10.0] This vulnerability exists in the web management interface of FMC. An unauthenticated remote attacker could bypass authentication and execute scripts on affected devices, thereby gaining root access to the underlying operating system.
- Impacted Platforms:
- Cisco Secure Firewall Management Center (FMC) versions 6.4.0.13, 6.4.014, 6.4.0.15, 6.4.0.16, 6.4.0.17, 6.4.0.18, 7.0.0, 7.0.0.1, 7.0.1, 7.0.1.1, 70.2, 7.0.2.1, 7.0.3, 7.0.4, 7.0.5, 7.0.6, 7.0.6.1, 7.0.6.2, 7.0.6.3, 7.0.7, 7.0.8, 7.0.8.1, 7.1.0, 7.1.0.1, 7.1.0.2, 7.1.0.3, 7.2.0, 7.2.1, 7.2.2, 7.2.0.1, 7.2.3, 7.2.3.1, 7.2.4, 7.2.4.1, 7.2.5, 7.2.5.1, 7.2.6, 7.2.7, 7.2.5.2, 7.2.8, 7.2.8.1, 7.2.9, 7.2.10, 7.2.10.2, 7.2.10.1, 7.3.0, 7.3.1, 7.3.1.1, 7.3.1.2, 7.4.0, 7.4.1, 7.4.1.1, 74.2, 7.4.2.1, 7.4.2.2, 7.4.2.3, 7.4.2.4, 7.4.3, 7.4.4, 7.4.5, 7.6.0, 7.6.1, 7.6.2, 7.6.2.1, 7.6.3, 7.6.4, 7.7.0, 7.7.10, 7.7.10.1, 7.7.11, 10.0.0
- Suggested Measures:
- Please patch according to the solutions released on the official website:
- References:
Computer and Communication Center
Network Systems Division
