CVE-2026-20206— Cisco ThousandEyes Enterprise Agent 操作系统命令注入漏洞
Possible ATT&CK Techniques 3AI
T1059 · Command and Scripting Interpreter T1078 · Valid Accounts T1190 · Exploit Public-Facing ApplicationAffected Version Matrix 10
| ベンダー | プロダクト | Version Range | ステータス |
|---|---|---|---|
| Cisco | Cisco ThousandEyes Enterprise Agent | Agent 5.0 | affected |
Agent 4.4.4 | affected | ||
Agent 4.4.3 | affected | ||
Agent 4.4.2 | affected | ||
Agent 4.2 | affected | ||
Agent 4.1 | affected | ||
Agent 4.0 | affected | ||
Agent 5.1 | affected | ||
| … +2 more rows | |||
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2026-20206の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
Cisco ThousandEyes BrowserBot Command Injection Vulnerability
ソース: NVD (National Vulnerability Database)
脆弱性説明
A vulnerability in the BrowserBot component of Cisco ThousandEyes Enterprise Agent could have allowed an authenticated, remote attacker to execute arbitrary commands on Agents on behalf of the BrowserBot synthetics orchestration process. Cisco has addressed this vulnerability in the Cisco ThousandEyes Enterprise Agent, and no customer action is needed. This vulnerability was due to insufficient input validation of command arguments that are supplied by the user. Prior to this vulnerability being addressed, an attacker could have exploited this vulnerability by authenticating to the ThousandEyes SaaS and submitting crafted input into the affected parameter. A successful exploit could have allowed the attacker to execute arbitrary commands within the BrowserBot container as the node user. To exploit this vulnerability, the attacker must have valid user credentials for the ThousandEyes SaaS and the ability to manage transaction tests.
ソース: NVD (National Vulnerability Database)
CVSS情報
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Cisco ThousandEyes Enterprise Agent 操作系统命令注入漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Cisco ThousandEyes Enterprise Agent是美国思科(Cisco)公司的一个应用程序。提供了扩展的可视性、自动化的见解和无缝的工作流程。 Cisco ThousandEyes Enterprise Agent存在操作系统命令注入漏洞,该漏洞源于BrowserBot组件中命令参数输入验证不足,可能导致认证远程攻击者以节点用户身份执行任意命令。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
| ベンダー | プロダクト | 影響を受けるバージョン | CPE | 購読 |
|---|---|---|---|---|
| Cisco | Cisco ThousandEyes Enterprise Agent | Agent 5.0 | - |
II. CVE-2026-20206の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2026-20206のインテリジェンス情報
请登录查看更多情报信息。
CVE-2026-20206 厂商安全公告 (1)
Same Patch Batch · Cisco · 2026-05-20 · 4 CVEs total
| CVE-2026-20223 | 10.0 CRITICAL | Cisco Secure Workload Unauthorized API Access Vulnerability |
| CVE-2026-20171 | 6.8 MEDIUM | Cisco Nexus 3000 and 9000 Series Border Gateway Protocol Denial of Service Vulnerability |
| CVE-2026-20199 | 4.7 MEDIUM | Cisco ThousandEyes Virtual Appliance 注入漏洞 |
IV. 関連脆弱性
同じベンダー: Cisco
- CVE-2026-20199
Cisco ThousandEyes Virtual Appliance 注入漏洞 - CVE-2026-20171
Cisco Nexus 3000 and 9000 Series Border Gateway Protocol Den - CVE-2026-20223
Cisco Secure Workload Unauthorized API Access Vulnerability - CVE-2026-20224
Cisco Catalyst SD-WAN Manager XML External Entity Injection - CVE-2026-20210
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerabi
同じ弱点: CWE-78
- CVE-2026-4408
Samba: remote code execution in samr - CVE-2026-44604
Rpm: command injection in rpmuncompress dountar() via unesca - CVE-2026-45322
OS Command Injection in Microsoft UFO Shell Action Replay vi - CVE-2026-45152
uniget: Command Injection in tool.Check Leading to Arbitrary - CVE-2026-9208
Tanium addressed an unauthorized code execution vulnerabilit
V. CVE-2026-20206へのコメント
まだコメントはありません