Cisco Smart Software Manager flaw lets attackers run commands as root

Cisco has disclosed a critical vulnerability in Smart Software Manager On-Prem that can let an unauthenticated remote attacker execute arbitrary commands on the underlying operating system. The bug, tracked as CVE-2026-20160, carries a CVSS score of 9.8 and affects vulnerable SSM On-Prem deployments exposed to the network. According to Cisco’s advisory, the issue exists because […] The post Cisco Smart Software Manager flaw lets attackers run commands as root appeared first on VPN Central.