CVE-2026-20115 - Vulnerability Details - OpenCVE

A vulnerability in Cisco IOS XE Software for Cisco Meraki could allow a remote, unauthenticated attacker to view confidential device information.

This vulnerability is due to a device configuration upload being performed over an insecure tunnel. An attacker could exploit this vulnerability by conducting an on-path attack between the affected device and the Cisco Meraki Dashboard. A successful exploit could allow the attacker to view sensitive device configuration information.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe_infodis-6J847uEB

History

Wed, 25 Mar 2026 16:15:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability in Cisco IOS XE Software for Cisco Meraki could allow a remote, unauthenticated attacker to view confidential device information. This vulnerability is due to a device configuration upload being performed over an insecure tunnel. An attacker could exploit this vulnerability by conducting an on-path attack between the affected device and the Cisco Meraki Dashboard. A successful exploit could allow the attacker to view sensitive device configuration information.
Weaknesses		CWE-319
References		https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe_infodis-6J847uEB
Metrics		cvssV3_1 `{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2026-03-25T16:08:01.917Z

Updated: 2026-03-25T17:41:48.709Z

Reserved: 2025-10-08T11:59:15.376Z

Link: CVE-2026-20115

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-03-25T16:16:16.533

Modified: 2026-03-25T16:16:16.533

Link: CVE-2026-20115

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-319

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-20115", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2025-10-08T11:59:15.376Z", "datePublished": "2026-03-25T16:08:01.917Z", "dateUpdated": "2026-03-25T17:41:48.709Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2026-03-25T16:08:01.917Z"}, "descriptions": [{"lang": "en", "value": "A vulnerability in Cisco IOS XE Software for Cisco Meraki could allow a remote, unauthenticated attacker to view confidential device information.\r\n\r This vulnerability is due to a device configuration upload being performed over an insecure tunnel. An attacker could exploit this vulnerability by conducting an on-path attack between the affected device and the Cisco Meraki Dashboard. A successful exploit could allow the attacker to view sensitive device configuration information."}], "affected": [{"vendor": "Cisco", "product": "Cisco IOS XE Software", "versions": [{"version": "17.14.1", "status": "affected"}, {"version": "17.14.1a", "status": "affected"}, {"version": "17.15.1", "status": "affected"}, {"version": "17.15.1w", "status": "affected"}, {"version": "17.15.1a", "status": "affected"}, {"version": "17.15.2", "status": "affected"}, {"version": "17.15.1b", "status": "affected"}, {"version": "17.15.1x", "status": "affected"}, {"version": "17.15.1z", "status": "affected"}, {"version": "17.15.3", "status": "affected"}, {"version": "17.15.2c", "status": "affected"}, {"version": "17.15.2a", "status": "affected"}, {"version": "17.15.1y", "status": "affected"}, {"version": "17.15.2b", "status": "affected"}, {"version": "17.15.3a", "status": "affected"}, {"version": "17.15.4", "status": "affected"}, {"version": "17.15.3b", "status": "affected"}, {"version": "17.15.4d", "status": "affected"}, {"version": "17.15.4e", "status": "affected"}, {"version": "17.16.1", "status": "affected"}, {"version": "17.16.1a", "status": "affected"}, {"version": "17.17.1", "status": "affected"}, {"version": "17.18.1", "status": "affected"}, {"version": "17.18.1w", "status": "affected"}, {"version": "17.18.1a", "status": "affected"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Cleartext Transmission of Sensitive Information", "type": "cwe", "cweId": "CWE-319"}]}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe_infodis-6J847uEB", "name": "cisco-sa-iosxe_infodis-6J847uEB"}], "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE"}}], "exploits": [{"lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-iosxe_infodis-6J847uEB", "discovery": "INTERNAL", "defects": ["CSCwp83554"]}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-25T17:38:25.744053Z", "id": "CVE-2026-20115", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-25T17:41:48.709Z"}}]}}