CVE Catalog

CVE-2026-20195

MediumCVSS 5.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.28%

19th percentile - higher than 19% of all known CVEs

Summary

A vulnerability in an identity management API endpoint of Cisco ISE allows an unauthenticated, remote attacker to enumerate valid user accounts on an affected device. The issue exists due to observable error messages when the API endpoint is called.

Risk Assessment

An attacker can compile a list of valid usernames, facilitating brute-force or social engineering attacks against the system.

Recommendation

Apply the patches provided by Cisco immediately and restrict access to the identity management API endpoint to trusted networks only.

Original NVD description (English source)

A vulnerability in an identity management API endpoint of Cisco ISE could allow an unauthenticated, remote attacker to enumerate valid user accounts on an affected device. This vulnerability exists because error messages are observed when the affected API endpoint is called. An attacker could exploit this vulnerability by sending a series of crafted requests to the affected endpoint and analyzing the differentiated responses. A successful exploit could allow the attacker to compile a list of valid usernames on an affected system.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS