CISCO-CVE-2026-20004

HIGH7.4

Cisco IOS XE Software TLS Memory Exhaustion Vulnerability

Published Mar 25, 2026

Modified 3 weeks ago

Affected Packages

Cisco IOS XE

CiscoIOSXE

Affected versions:

16.10.116.10.1a16.10.1b16.10.1c16.10.1d16.10.1e16.10.1f16.10.1g16.10.1s16.10.2+190 more

CVSS Analysis

CVSS v3.1

7.4

Exploitability

Attack Vector

AdjacentAV:A

Attack Complexity

LowAC:L

Privileges Required

NonePR:N

User Interaction

NoneUI:N

Scope

ChangedS:C

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

7.4/CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Upstream

Ecosystems

Timeline

PublishedMar 25, 2026

ModifiedMar 25, 2026