CVE-2026-20131: Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data Vulnerability
Summary
Cisco Secure Firewall Management Center (FMC) and Cisco Security Cloud Control (SCC) contain a deserialization of untrusted data vulnerability (a flaw where the software unsafely processes data that could contain malicious code) in their web management interfaces. An unauthenticated attacker (someone without login credentials) can remotely execute arbitrary Java code with root privileges (the highest level of system access) on affected devices. This vulnerability is currently being actively exploited by attackers.
Solution / Mitigation
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. The deadline for remediation is 2026-03-22.
Vulnerability Details
EPSS: 0.6%
Yes
March 18, 2026
Classification
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-20131
First tracked: March 19, 2026 at 12:00 PM
Classified by LLM (prompt v3) · confidence: 95%