Unrated severityNVD Advisory· Published Mar 25, 2026· Updated Mar 25, 2026
CVE-2026-20115
CVE-2026-20115
Description
A vulnerability in Cisco IOS XE Software for Cisco Meraki could allow a remote, unauthenticated attacker to view confidential device information. This vulnerability is due to a device configuration upload being performed over an insecure tunnel. An attacker could exploit this vulnerability by conducting an on-path attack between the affected device and the Cisco Meraki Dashboard. A successful exploit could allow the attacker to view sensitive device configuration information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 17.14.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.