![\"Cisco](\"https:\/\/www.bleepstatic.com\/content\/hl-images\/2025\/03\/04\/Cisco-headpic.jpg\")
<\/p>\n<\/p>\n
Cisco has released security updates to patch four critical vulnerabilities, including a fixed improper certificate validation flaw in the company’s cloud-based Webex Services platform that requires further customer action.<\/p>\n
Webex Services is a customer experience platform that unifies communication across hybrid work environments, enabling team members to call, meet, and message each other from any location or device.<\/p>\n
Tracked as CVE-2026-20184<\/a>, the Webex vulnerability was found in the single sign-on (SSO) integration with Control Hub (a web-based portal that helps IT admins manage Webex settings) and allows remote attackers with no privileges to impersonate any user.<\/p>\n “Prior to this vulnerability being addressed, an attacker could have exploited this vulnerability by connecting to a service endpoint and supplying a crafted token,” Cisco explained<\/a> in a Wednesday advisory. “A successful exploit could have allowed the attacker to gain unauthorized access to legitimate Cisco Webex services.”<\/p>\n While the company has already addressed this security flaw in the Cisco Webex service, it warned customers who use SSO integration that they must upload a new SAML certificate<\/a> for their identity provider (IdP) to Control Hub to avoid service interruption.<\/p>\n On Wednesday, the company also patched three critical security flaws (CVE-2026-20147<\/a>, CVE-2026-20180<\/a>, and CVE-2026-20186<\/a>) in the Identity Services Engine (ISE) security policy management platform.<\/p>\n Attackers could exploit these vulnerabilities to execute arbitrary commands on the underlying operating system regardless of device configuration; however, successful exploitation requires administrative credentials on the targeted systems.<\/p>\n The complete list of security issues addressed this week<\/a> also includes 10 medium-severity flaws that can be abused to bypass authentication, escalate privileges, and trigger denial-of-service states.<\/p>\n Cisco also added that its Product Security Incident Response Team (PSIRT) had no evidence that any of them had been exploited in attacks.<\/p>\n Last month, the Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies<\/a> to patch a maximum-severity vulnerability (CVE-2026-20131) in Cisco’s Secure Firewall Management Center (FMC) that had been exploited as a zero-day in Interlock ransomware attacks<\/a> since late January 2026.<\/p>\n ![\"Cisco](\"https:\/\/www.bleepstatic.com\/c\/a\/as-tour-the-platform-970-x250.jpg\")
<\/a> <\/div>\n