Unrated severityNVD Advisory· Published Mar 25, 2026· Updated Mar 27, 2026
CVE-2026-20113
CVE-2026-20113
Description
A vulnerability in the web-based Cisco IOx application hosting environment management interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to perform a carriage return line feed (CRLF) injection attack against a user. This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by sending crafted packets to an affected device. A successful exploit could allow the attacker to arbitrarily inject log entries, manipulate the structure of log files, or obscure legitimate log events.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 16.6.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.