Cisco Identity Services Engine Remote Code Execution and Information Disclosure Vulnerabilities

72% confidence

Description

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) and Cisco ISE-PIC (Passive Identity Connector) allow remote code execution and information disclosure. These affect versions prior to 3.3, 3.3 Patch 11, 3.4 Patch 6, and 3.5 Patch 4.

Affected Products

Vendor	Product	Versions
cisco	cisco identity services engine (ise) and cisco ise-pic	< 3.3, 3.3 - prior to 3.3 Patch 11, 3.4 - prior to 3.4 Patch 6, 3.5 - prior to 3.5 Patch 4

Related News (1 articles)

Tier B

CCCS Canada4h ago

Cisco security advisory (AV26-613)

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

Patch available

3.5 Patch 4

PublishedJun 17, 2026

Last enriched3h ago

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-20190EXP

Cisco Identity Services Engine Information Disclosure Vulnerability

Trending: 66

CRITICALCVE-2026-20181EXP

Cisco Identity Services Engine Remote Code Execution Vulnerability

Trending: 65

MEDIUMCVE-2026-20220

Cisco Crosswork Network Controller Remote Code Execution Vulnerability

Trending: 34

MEDIUMCVE-2026-20171

Cisco Nexus 3000 and 9000 Series Border Gateway Protocol Denial of Service Vulnerability

Trending: 2

MEDIUMCVE-2026-20206

Cisco ThousandEyes BrowserBot Command Injection Vulnerability

Trending: 2

Pin to Dashboard

Verification

State: reported

Confidence: 72%

Vulnerability Timeline

CVE Published

Jun 17, 2026

Patch Available

Jun 17, 2026

Discovered by ZDM

Jun 17, 2026