CVE-2026-20092

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2026-20092
A vulnerability in the read-only maintenance shell of Cisco Intersight Virtual Appliance could allow an authenticated, local attacker with administrative privileges to elevate privileges to root on the virtual appliance. This vulnerability is due to improper file permissions on configuration files for system accounts within the maintenance shell of the virtual appliance. An attacker could exploit this vulnerability by accessing the maintenance shell as a read-only administrator and manipulating system files to grant root privileges. A successful exploit could allow the attacker to elevate their privileges to root on the virtual appliance and gain full control of the appliance, giving them the ability to access sensitive information, modify workloads and configurations on the host system, and cause a denial of service (DoS).

6.0 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 5.2

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-intersight-privesc-p6tBm6jk
Configurations

No configuration.

History

15 Apr 2026, 00:35

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad en el shell de mantenimiento de solo lectura de Cisco Intersight Virtual Appliance podría permitir a un atacante local autenticado con privilegios administrativos elevar privilegios a root en el dispositivo virtual. Esta vulnerabilidad se debe a permisos de archivo incorrectos en los archivos de configuración para las cuentas de sistema dentro del shell de mantenimiento del dispositivo virtual. Un atacante podría explotar esta vulnerabilidad al acceder al shell de mantenimiento como administrador de solo lectura y manipular archivos de sistema para otorgar privilegios de root. Un exploit exitoso podría permitir al atacante elevar sus privilegios a root en el dispositivo virtual y obtener control total del dispositivo, dándoles la capacidad de acceder a información sensible, modificar cargas de trabajo y configuraciones en el sistema host, y causar una denegación de servicio (DoS).

21 Jan 2026, 17:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-01-21 17:16

Updated : 2026-04-15 00:35

NVD link : CVE-2026-20092

Mitre link : CVE-2026-20092

CVE.ORG link : CVE-2026-20092

JSON object : View

Products Affected

No product.

CWE
CWE-732

Incorrect Permission Assignment for Critical Resource