Critical Cisco IMC auth bypass gives attackers Admin access Cisco released security updates for multiple critical vulnerabilities, including an Integrated Management Controller (IMC) authentication bypass (CVE-2026-20093) that can let attackers gain Admin access to UCS C‑Series and E‑Series servers. Patches are strongly recommended because there are no mitigations; fixes also cover a Smart Software Manager On‑Prem RCE (CVE-2026-20160), the FMC RCE previously exploited by Interlock (CVE-2026-20131), and follow a reported breach tied to the Trivy supply chain attack. #CiscoIMC #CVE-2026-20093 #SSMOnPrem #CVE-2026-20160 #FMC #CVE-2026-20131 #Interlock #Trivy

Cisco patches critical auth bypass (CVE-2026-20093) in IMC allowing attackers Admin access to UCS servers. Fixes also address RCE in Smart Software Manager and FMC, linked to Interlock and Trivy attacks. #CiscoIMC #SupplyChain #USA