Multiple Cisco IOS XR Vulnerabilities

Severity

High

Analysis Summary

CVE-2026-20046 CVSS:8.8

A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to elevate privileges and gain full administrative control of an affected device

CVE-2026-20074 CVSS:7.4

A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) multi-instance routing feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the IS-IS process to restart unexpectedly.

Impact

Gain Access

Indicators of Compromise

CVE

CVE-2026-20046
CVE-2026-20074

Affected Vendors

Cisco

Affected Products

Cisco IOS XR Software
Cisco IOS XR Software 6.6.1
Cisco IOS XR Software 7.8.1

Remediation

Refer to Cisco Security Advisory for patch, upgrade or suggested workaround information.

CVE-2026-20046

CVE-2026-20074

Rewterz Annual Threat Intelligence Report 2025 - Download Now

Microsoft AD DS Vulnerability Allows Privilege Escalation

Iran-Linked Campaign Surge Targeting Middle East Governments – Active IOCs

Multiple Cisco IOS XR Vulnerabilities

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan