Security Advisory

Cisco Product Security Update Advisory (CVE-2026-20223)

May 26 2026

Cisco Product Security Update Advisory (CVE-2026-20223)

Overview

Cisco has announced a security update that addresses a vulnerability in Cisco products. this bulletin is for an unauthenticated API access vulnerability (CVE-2026-20223) in Cisco Secure Workload.

Affected Products

Cisco Secure Workload version 3.9 and earlier.
Cisco Secure Workload versions 3.10 and later but earlier than 3.10.8.3.
Cisco Secure Workload versions 4.0 and later but earlier than 4.0.3.17.

Vulnerability Description

CVE-2026-20223 is an unauthenticated API access vulnerability in Cisco Secure Workload.
the text does not specify how this vulnerability can be exploited or any additional impact.

Mitigation

Cisco has provided a vulnerability patch in the latest update.
users of affected products should follow the instructions on the reference site to migrate to the corrected release.
the corrected releases are Cisco Secure Workload 3.10.8.3 and 4.0.3.17.

Note

Cisco Secure Workload Unauthorized API Access Vulnerability.

Previous Post

TanStack Supply Chain Attack Security Advisory (CVE-2026-45321)