Medium severity6.1NVD Advisory· Published Apr 1, 2026· Updated Apr 3, 2026

CVE-2026-20085

Description

A vulnerability in the web-based management interface of Cisco IMC could allow an unauthenticated, remote attacker to conduct a reflected XSS attack against a user of the interface.

This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the browser of the targeted user or access sensitive, browser-based information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Cisco IMC web-based management interface is vulnerable to reflected XSS due to insufficient input validation, allowing unauthenticated remote attackers to execute script in a user's browser.

Vulnerability

Overview

The web-based management interface of Cisco Integrated Management Controller (IMC) is affected by a reflected cross-site scripting (XSS) vulnerability, identified as CVE-2026-20085. The root cause. The root cause is insufficient validation of user input within the interface, which allows an attacker to inject arbitrary script code [1].

Exploitation

An unauthenticated, remote attacker can exploit this vulnerability by convincing a user of an affected interface to click a crafted link. No authentication is required to trigger the XSS, and the attack is delivered via social engineering or by embedding the malicious link in a web page or email [1].

Impact

Successful exploitation enables the attacker to execute arbitrary script code in the context of the targeted user's browser. This could lead to access to sensitive, browser-based information, such as session tokens or cookies, potentially compromising the management session [1].

Mitigation

Cisco has released software updates that address this vulnerability. There are no workarounds available. Affected products include various Cisco UCS servers and network compute systems running vulnerable releases of Cisco IMC [1].

References

Cisco Security Advisory: Cisco Integrated Management Controller Cross-Site Scripting Vulnerabilities

AI Insight generated on May 18, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Cisco Systems, Inc./IMCllm-fuzzy

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cimc-xss-A2tkgVABnvd

News mentions

No linked articles in our index yet.

cvss	0.397
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000