CVE-2026-20046 | Cisco IOS XR up to 25.2.1 CLI access control (cisco-sa-iosxr-privesc-bF8D5U4W)

Inserito da Angelo Barbosa | Mar 11, 2026 | CVE

A vulnerability was found in Cisco IOS XR. It has been classified as critical. Affected is an unknown function of the component CLI. Performing a manipulation results in improper access controls.

This vulnerability is identified as CVE-2026-20046. The attack is only possible with local access. There is not any exploit available.

Upgrading the affected component is recommended.

CVE-2026-20046 | Cisco IOS XR up to 25.2.1 CLI access control (cisco-sa-iosxr-privesc-bF8D5U4W)

Post correlati

CVE-2025-8627 | TP-Link KP303 Smartplug up to 1.0.x access control

CVE-2024-30800 | PX4 Autopilot 1.14 No-Fly Zone access control

CVE-2024-5865 | Delinea Centrify PAS up to 23.1-HF6 path traversal (inea-2023-001)

CVE-2025-23878 | Scott Reilly Post-to-Post Links Plugin up to 4.2 on WordPress cross site scripting