# CVE-2026-20093

> Critical authentication bypass vulnerability (CVSS 9.8) in Cisco Integrated Management Controller (IMC) allows unauthenticated remote attackers to bypass authentication and gain full administrative access. The flaw resides in improper input validation (CWE-20) in the password change functionality of the IMC web interface and XML API. The system fails to validate the authorization context during password modification requests before processing backend database updates. An unauthenticated attacker can craft an XML POST request targeting the configConfMo method with the aaaUser object class, mani

- **CVSS:** 9.8 (CRITICAL)
- **EPSS:** 0.0%
- **CWE:** CWE-20

Canonical: https://intel.threadlinqs.com/cve/CVE-2026-20093
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp