Medium severity4.8NVD Advisory· Published Apr 1, 2026· Updated Apr 3, 2026

CVE-2026-20088

Description

A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with administrative privileges to conduct a stored XSS attack against a user of the interface.

This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the browser of the targeted user or access sensitive, browser-based information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Cisco IMC web interface stored XSS allows authenticated admin to execute arbitrary script in a user's browser via crafted link.

Vulnerability

Overview

CVE-2026-20088 is a stored cross-site scripting (XSS) vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC). The root cause is insufficient validation of user-supplied input, which allows an attacker to inject malicious script code that is later served to other users of the interface [1].

Exploitation

An attacker must first authenticate to the Cisco IMC interface with administrative privileges. The attacker then crafts a malicious link containing the XSS payload and persuades a user of the affected interface to click it. The vulnerability is triggered when the targeted user clicks the link, causing the injected script to execute in the context of the user's browser session [1].

Impact

Successful exploitation enables the attacker to execute arbitrary script code in the victim's browser. This can lead to access to sensitive browser-based information, such as session tokens or cookies, potentially allowing further compromise of the management sessions [1].

Mitigation

Cisco has released software updates that address this vulnerability. There are no workarounds available. Administrators are advised to upgrade to a fixed version of Cisco IMC as specified in the vendor advisory [1].

References

Cisco Security Advisory: Cisco Integrated Management Controller Cross-Site Scripting Vulnerabilities

AI Insight generated on May 18, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Cisco Systems, Inc./IMCllm-fuzzy

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cimc-xss-A2tkgVABnvd

News mentions

No linked articles in our index yet.

cvss	0.312
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000