CVE-2026-20185— Cisco SG350 and SG350X Series Managed Switches SNMP Denial of Service Vunerability
Possible ATT&CK Techniques 2AI
T1190 · Exploit Public-Facing Application T1499.001 · OS Exhaustion FloodAffected Version Matrix 2
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Cisco | Cisco Small Business Smart and Managed Switches | 2.5.9.54 | affected |
2.5.9.55 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-20185
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco SG350 and SG350X Series Managed Switches SNMP Denial of Service Vunerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco 350 Series Managed Switches (SG350) and Cisco 350X Series Stackable Managed Switches (SG350X) firmware could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper error handling when parsing response data for a specific SNMP request. An attacker could exploit this vulnerability by sending a specific SNMP request to an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. This vulnerability affects SNMP versions 1, 2c, and 3. To exploit this vulnerability through SNMPv2c or earlier, the attacker must know a valid read-write or read-only SNMP community string for the affected system. To exploit this vulnerability through SNMPv3, the attacker must have valid SNMP user credentials for the affected system.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
堆缓冲区溢出
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco 350X Series和Cisco 350 Series 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco 350X Series和Cisco 350 Series都是美国思科(Cisco)公司的一系列企业级可堆叠以太网交换机。 Cisco 350X Series和Cisco 350 Series存在安全漏洞,该漏洞源于解析特定SNMP请求响应数据时错误处理不当,可能导致经过身份验证的远程攻击者发送特定SNMP请求导致设备意外重新加载,造成拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Cisco | Cisco Small Business Smart and Managed Switches | 2.5.9.54 | - |
II. Public POCs for CVE-2026-20185
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-20185
请登录查看更多情报信息。
Advisory · 1
Same Patch Batch · Cisco · 2026-05-06 · 12 CVEs total
| CVE-2026-20034 | 8.8 HIGH | Cisco Unity Connection Remote Code Execution Vulnerability |
| CVE-2026-20167 | 7.7 HIGH | Cisco IoT Field Network Director Remote Device Denial of Service Vulnerability |
| CVE-2026-20035 | 7.2 HIGH | Cisco Unity Connection Server-Side Request Forgery Vulnerability |
| CVE-2026-20168 | 6.5 MEDIUM | Cisco IoT Field Network Director Path Traversal Vulnerability |
| CVE-2026-20169 | 6.4 MEDIUM | Cisco IoT Field Network Director Command Injection Vulnerability |
| CVE-2026-20219 | 5.4 MEDIUM | Cisco Slido 安全漏洞 |
| CVE-2026-20195 | 5.3 MEDIUM | Cisco Identity Services Engine Observable Response Discrepancy Vulnerability |
| CVE-2026-20193 | 4.3 MEDIUM | Cisco Identity Services Engine Authentication Bypass Vulnerability |
| CVE-2026-20189 | 4.3 MEDIUM | Cisco Prime Infrastructure Information Disclosure Vulnerability |
| CVE-2026-20172 | 4.3 MEDIUM | Cisco Enterprise Chat and Email Lite Agent File Upload Vulnerability |
| CVE-2026-20188 | Cisco Crosswork Network Controller and Cisco Network Services Orchestrator Advisory |
IV. Related Vulnerabilities
Same product: Cisco Small Business Smart and Managed Switches
Same vendor: Cisco
- CVE-2026-20224
Cisco Catalyst SD-WAN Manager XML External Entity Injection - CVE-2026-20210
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerabi - CVE-2026-20209
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerabi - CVE-2026-20182
Cisco Catalyst SD-WAN Controller Authentication Bypass Vulne - CVE-2026-20219
Cisco Slido 安全漏洞
Same weakness: CWE-122
V. Comments for CVE-2026-20185
No comments yet