A critical vulnerability in Cisco's Integrated Management Controller (IMC) has been patched, affecting numerous servers and appliances that utilize the out-of-band management solution. The flaw, identified as CVE-2026-20093, enables unauthenticated remote attackers to bypass authentication and gain administrative access to the IMC, allowing them to control servers remotely, even when the primary operating system is offline. This vulnerability arises from incorrect password change handling and can be exploited through specially crafted HTTP requests. The severity of this issue necessitates prompt attention, as it could be exploited to gain unauthorized access to sensitive systems1. The fact that this vulnerability is being actively discussed, including its potential exploitation status, underscores the importance of applying the patch promptly to prevent potential security breaches, making it essential for practitioners to prioritize and address this vulnerability to protect their systems.
Cisco fixes critical IMC auth bypass present in many products
⚠️ Critical Alert
Why This Matters
CVE-2026-20093 is in active discussion involving Cisco — exploitation status determines whether this is patch-now or monitor.
References
- CSO Online. (2026, April 2). Cisco fixes critical IMC auth bypass present in many products. *CSO Online*. https://www.csoonline.com/article/4154052/cisco-fixes-critical-imc-auth-bypass-present-in-many-products.html
Original Source
CSO Online
Read original →