Serial number: AV26-307
Date: April 1, 2026
On April 1, 2026, Cisco published security advisories to address vulnerabilities in the following products:
- Cisco NFVIS Release – multiple versions
- Cisco IMC Release – multiple versions
- Cisco Telemetry Broker Appliances – version 6.0(2.260044) (M6) and prior
- IEC6400 Edge Compute Appliances – version 4.3(6.260017) (M6) and prior
- Secure Endpoint Private Cloud Appliances – versions 4.3(2.260007) (M5) and 4.3(6.260017) (M6)
- Secure Firewall Management Center Appliances – versions 4.3(2.260007) (M5) and 4.3(6.260017) (M6)
- Secure Malware Analytics Appliances – versions 4.3(2.260007) (M5) and 4.3(6.260017) (M6)
- Secure Network Analytics Appliances – versions 4.3(2.260007) (M5) and 6.0(2.260044) (M6)
- Secure Network Server Appliances – multiple versions
- Cisco SSM On-Prem Release – version 9-202510 and prior
- Cisco EPNM Release – versions 8.0 and prior, version 8.1 and prior
The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested recommendations, and apply the necessary updates when available.
- Cisco Integrated Management Controller Command Injection and Remote Code Execution Vulnerabilities
- Cisco Smart Software Manager On-Prem Privilege Escalation Vulnerability
- Cisco Evolved Programmable Network Manager Improper Authorization Vulnerability
- Cisco Integrated Management Controller Authentication Bypass Vulnerability
- Cisco Smart Software Manager On-Prem Arbitrary Command Execution Vulnerability
- Cisco Security Advisories