Home

Description

A vulnerability in the web interface of Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an authenticated, remote attacker to elevate privileges on an affected system. This vulnerability is due to the improper transmission of sensitive user information. An attacker could exploit this vulnerability by sending a crafted message to an affected Cisco SSM On-Prem host and retrieving session credentials from subsequent status messages. A successful exploit could allow the attacker to elevate privileges on the affected system from low to administrative. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of System User. Note: This vulnerability exposes information only about users who logged in to the Cisco SSM On-Prem host using the web interface and who are currently logged in. SSH sessions are not affected.

PUBLISHED Reserved 2025-10-08 | Published 2026-04-01 | Updated 2026-04-02 | Assigner cisco




HIGH: 7.3CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

Problem types

Insertion of Sensitive Information Into Sent Data

Product status

Default status
unknown

7-202001
affected

8-202004
affected

8-202006
affected

8-202012
affected

8-202010
affected

8-202008
affected

9-202201
affected

8-202102
affected

8-202105
affected

8-202108
affected

8-202112
affected

8-202201
affected

8-202206
affected

8-202212
affected

8-202302
affected

8-202303
affected

8-202304
affected

8-202308
affected

8-202401
affected

8-202404
affected

9-202406
affected

9-202407
affected

9-202410
affected

9-202412
affected

9-202501
affected

9-202502
affected

9-202504
affected

9-202507
affected

9-202510
affected

References

sec.cloudapps.cisco.com/...y/cisco-sa-cssm-priv-esc-xRAnOuO8 (cisco-sa-cssm-priv-esc-xRAnOuO8)

cve.org (CVE-2026-20151)

nvd.nist.gov (CVE-2026-20151)

Download JSON