On March 4, 2026, Cisco released fixes for two maximum-severity vulnerabilities impacting Cisco Secure Firewall Management Center (FMC), which is used to centrally manage Cisco Secure Firewall devices.

ArcticWolf's platform is a central hub for cybersecurity professionals, offering insights into managed detection and response (MDR), threat intelligence, and security operations. Through articles, reports, and webinars, ArcticWolf offers insights into detecting and responding to cybersecurity threats effectively. Security analysts can learn about threat hunting, incident response strategies, and security best practices to protect organizations from cyberattacks.

Arctic Wolf

Cisco released patches on March 4, 2026 for two maximum-severity vulnerabilities in Cisco Secure Firewall Management Center (FMC). CVE-2026-20079 allows unauthenticated remote attackers to bypass authentication and execute scripts as root via crafted HTTP requests, caused by an improperly created system process at boot. CVE-2026-20131 allows unauthenticated remote attackers to execute arbitrary Java code as root through insecure deserialization of crafted serialized objects. No active exploitation or public proof-of-concept exploits have been observed yet. Organizations are strongly advised to upgrade to the latest fixed FMC release using Cisco's Software Checker. CVE-2026-20131 also affects Cisco Security Cloud Control, but Cisco has already patched that service automatically.

CVE-2026-20079 & CVE-2026-20131