CISCO-CVE-2026-20012

HIGH8.6

Cisco IOS, IOS XE, Secure Firewall Adaptive Security Appliance, and Secure Firewall Threat Defense Software IKEv2 Denial of Service Vulnerability

Published Mar 25, 2026

Modified 1 months ago

Affected Packages

Cisco IOS

CiscoIOS

Affected versions:

12.2(6)I115.0(2)EA15.0(2)EA115.0(2)EJ15.0(2)EJ115.0(2)EK15.0(2)EK115.0(2)EY15.0(2)EY115.0(2)EY2+637 more

Cisco IOS XE

CiscoIOSXE

Affected versions:

16.10.116.10.1a16.10.1b16.10.1c16.10.1d16.10.1e16.10.1f16.10.1g16.10.1s16.10.2+432 more

CVSS Analysis

CVSS v3.1

8.6

Exploitability

Attack Vector

NetworkAV:N

Attack Complexity

LowAC:L

Privileges Required

NonePR:N

User Interaction

NoneUI:N

Scope

ChangedS:C

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

8.6/CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Upstream

Ecosystems

Timeline

PublishedMar 25, 2026

ModifiedMar 25, 2026