CISCO has released patches for a critical-severity vulnerability (CVE-2026-20223) in its Secure Workload software that could allow attackers to gain Site Admin privileges access through insufficient validation in REST API endpoints, affecting both SaaS and on-prem deployments. Although no exploitation is reported in the wild, Cisco recommends that all users update to versions 3.10.8.3 or 4.0.3.17 to mitigate risks.
Additionally, Cisco patched three medium-severity vulnerabilities in its ThousandEyes and Nexus products, which could enable remote command execution and denial-of-service conditions. Users are encouraged to stay updated with Cisco's security advisories.