Gallery

Contacts

405 W. Greenlawn Ave Lansing, Michigan 48910

contact@techjacksolutions.com

+1-616-320-4064

Cisco disclosed a path traversal vulnerability (CVE-2026-20191) in Catalyst Center, its centralized network management and automation platform, affecting hardware and virtual appliances on AWS, Azure, and VMware ESXi running releases 3.1 and 2.3.7. An unauthenticated remote attacker can read arbitrary files from affected systems without credentials. Cisco PSIRT confirmed no active exploitation as of July 1, 2026; however, Catalyst Center’s role as a high-privilege network management plane makes it a high-value target, and a documented pattern of Cisco management-plane vulnerabilities being actively weaponized in 2026 (CVE-2026-20128, CVE-2026-20122) elevates the urgency to patch.

Author

Tech Jacks Solutions