Ce mail provient de l'extérieur, restons vigilants ===================================================================== CERT-Renater Note d'Information No. 2026/VULN299 _____________________________________________________________________ DATE : 12/03/2026 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Cisco IOS XR, Systems running Cisco Contact Center Products. ===================================================================== https://sec.cloudapps.cisco.com/security/center/publicationListing.x _____________________________________________________________________ Below is the list of Cisco Security Advisories published by Cisco PSIRT on 2026-March-11. The following PSIRT security advisories (3 High, 1 Medium) were published at 16:00 UTC today. Table of Contents: 1) Cisco IOS XR Software CLI Privilege Escalation Vulnerabilities - SIR: High 2) Cisco IOS XR Egress Packet Network Interface Aligner Interrupt Denial of Service Vulnerability - SIR: High 3) Cisco IOS XR Software Multi-Instance Intermediate System-to-Intermediate System Denial of Service Vulnerability - SIR: High 4) Multiple Cisco Contact Center Products Cross-Site Scripting Vulnerabilities - SIR: Medium +-------------------------------------------------------------------- 1) Cisco IOS XR Software CLI Privilege Escalation Vulnerabilities CVE-2026-20040, CVE-2026-20046 SIR: High CVSS Score v(3.1): 8.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-privesc-bF8D5U4W ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-privesc-bF8D5U4W"] +-------------------------------------------------------------------- 2) Cisco IOS XR Egress Packet Network Interface Aligner Interrupt Denial of Service Vulnerability CVE-2026-20118 SIR: High CVSS Score v(3.1): 6.8 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xrncs-epni-int-dos-TWMffUsN ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xrncs-epni-int-dos-TWMffUsN"] +-------------------------------------------------------------------- 3) Cisco IOS XR Software Multi-Instance Intermediate System-to-Intermediate System Denial of Service Vulnerability CVE-2026-20074 SIR: High CVSS Score v(3.1): 7.4 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isis-dos-kDMxpSzK ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isis-dos-kDMxpSzK"] +-------------------------------------------------------------------- 4) Multiple Cisco Contact Center Products Cross-Site Scripting Vulnerabilities CVE-2026-20116, CVE-2026-20117 SIR: Medium CVSS Score v(3.1): 6.1 URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cc-xss-MrNAH5Jh ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cc-xss-MrNAH5Jh"] ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =========================================================