Critical 9.8 CVSS Flaw in Cisco SSM On-Prem Grants Unauthenticated Root Access
Do Son 
Cisco has recently dropped a high-stakes security advisory regarding a critical vulnerability in its Smart Software Manager On-Prem (SSM On-Prem). Labeled as CVE-2026-20160, this flaw carries a CVSS score of 9.8, signaling a “code red” for system administrators relying on this platform for license management.
The vulnerability is particularly dangerous because it requires no valid credentials to exploit, potentially handing the keys to the kingdom to any remote actor with network access to the server.
According to Cisco, the vulnerability exists due to the unintentional exposure of an internal service. While this service was meant to stay behind the scenes, it is currently reachable via the network.
An attacker can take advantage of this by sending a specifically crafted request to the API of the exposed service. Because the service doesn’t properly vet these requests from the outside world, it becomes a direct conduit for malicious instructions.
“A successful exploit could allow the attacker to execute commands on the underlying operating system with root-level privileges,” the advisory warns.
Cisco confirms that this vulnerability affects the SSM On-Prem software regardless of the specific software configuration. If you are running the affected versions, there are no “settings” you can toggle to hide from this—an upgrade is the only path to safety.
| Cisco SSM On-Prem Release | First Fixed Release |
|---|---|
| Earlier than 9-202502 | Not vulnerable |
| 9-202502 to 9-202510 | 9-202601 |
Cisco’s Product Security Incident Response Team (PSIRT) stated they are not aware of any public announcements or malicious use of this vulnerability at this time.
Support Our Threat Intelligence
If you find our CVE report and cybersecurity news helpful, consider supporting our work.
Buy Me a Coffee
PayPal
