Max severity Cisco Secure Workload flaw gives Site Admin privileges

Cisco has released security updates to address a maximum-severity Secure Workload vulnerability that allows attackers to gain Site Admin privileges.

Formerly known as Cisco Tetration, Cisco Secure Workload helps admins reduce their network's attack surface through zero trust microsegmentation and stop lateral movement to keep business applications safe.

Tracked as CVE-2026-20223, the security flaw was found in Secure Workload's internal REST APIs, and it enables unauthenticated attackers to access resources with the privileges of the Site Admin role.

"This vulnerability is due to insufficient validation and authentication when accessing REST API endpoints. An attacker could exploit this vulnerability if they are able to send a crafted API request to an affected endpoint," Cisco explained in a Wednesday advisory.

"A successful exploit could allow the attacker to read sensitive information and make configuration changes across tenant boundaries with the privileges of the Site Admin user."

Max severity Cisco Secure Workload flaw gives Site Admin privileges

Other newsrooms on this story

Related reading

Cisco Patches Critical Vulnerability in Secure Workload

Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access

Cisco serves up yet another perfect 10 bug with Secure Workload admin flaw

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

Cisco stopft Sicherheitsleck mit Höchstwertung in Secure Workload

Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin…