A vulnerability classified as very critical has been found in Cisco Identity Services Engine and ISE Passive Identity Connector. This affects an unknown part of the component HTTP Handler. This manipulation causes path traversal.
This vulnerability is registered as CVE-2026-20146. Remote exploitation of the attack is possible. No exploit is available.