Vulnerability Database

313,825

Total vulnerabilities in the database

CVE-2020-26062

A vulnerability in Cisco Integrated Management Controller could allow an unauthenticated, remote attacker to enumerate valid usernames within the vulnerable application. The vulnerability is due to differences in authentication responses sent back from the application as part of an authentication attempt. An attacker could exploit this vulnerability by sending authentication requests to the affected application. A successful exploit could allow the attacker to confirm the names of administrative user accounts for use in further attacks.There are no workarounds that address this vulnerability.

Published: Nov 18, 2024
Updated: Nov 16, 2025
CVE: CVE-2020-26062
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWEs:

CWE-203

Affected Software
References

Software	From	Fixed in
cisco / unified_computing_system	3.2(1d)	3.2(1d).x
cisco / unified_computing_system	3.2(2b)	3.2(2b).x
cisco / unified_computing_system	3.2(2c)	3.2(2c).x
cisco / unified_computing_system	3.2(2d)	3.2(2d).x
cisco / unified_computing_system	3.2(2e)	3.2(2e).x
cisco / unified_computing_system	3.2(2f)	3.2(2f).x
cisco / unified_computing_system	3.2(3a)	3.2(3a).x
cisco / unified_computing_system	3.2(3b)	3.2(3b).x
cisco / unified_computing_system	3.2(3d)	3.2(3d).x
cisco / unified_computing_system	3.2(3e)	3.2(3e).x
cisco / unified_computing_system	3.2(3g)	3.2(3g).x
cisco / unified_computing_system	3.2(3h)	3.2(3h).x
cisco / unified_computing_system	3.2(3i)	3.2(3i).x
cisco / unified_computing_system	3.2(3j)	3.2(3j).x
cisco / unified_computing_system	3.2(3k)	3.2(3k).x
cisco / unified_computing_system	3.2(3l)	3.2(3l).x
cisco / unified_computing_system	3.2(3n)	3.2(3n).x
cisco / unified_computing_system	3.2(3o)	3.2(3o).x
cisco / unified_computing_system	3.2(3p)	3.2(3p).x
cisco / unified_computing_system	4.0(1a)	4.0(1a).x
cisco / unified_computing_system	4.0(1b)	4.0(1b).x
cisco / unified_computing_system	4.0(1c)	4.0(1c).x
cisco / unified_computing_system	4.0(1d)	4.0(1d).x
cisco / unified_computing_system	4.0(2a)	4.0(2a).x
cisco / unified_computing_system	4.0(2b)	4.0(2b).x
cisco / unified_computing_system	4.0(2d)	4.0(2d).x
cisco / unified_computing_system	4.0(2e)	4.0(2e).x
cisco / unified_computing_system	4.0(4a)	4.0(4a).x
cisco / unified_computing_system	4.0(4b)	4.0(4b).x
cisco / unified_computing_system	4.0(4c)	4.0(4c).x
cisco / unified_computing_system	4.0(4d)	4.0(4d).x
cisco / unified_computing_system	4.0(4e)	4.0(4e).x
cisco / unified_computing_system	4.0(4f)	4.0(4f).x
cisco / unified_computing_system	4.0(4g)	4.0(4g).x
cisco / unified_computing_system	4.0(4h)	4.0(4h).x
cisco / unified_computing_system	4.0(4i)	4.0(4i).x
cisco / unified_computing_system	4.1(1a)	4.1(1a).x
cisco / unified_computing_system	4.1(1b)	4.1(1b).x
cisco / unified_computing_system	4.1(1c)	4.1(1c).x
cisco / unified_computing_system	4.1(1d)	4.1(1d).x
cisco / unified_computing_system	4.1(1e)	4.1(1e).x
cisco / unified_computing_system	4.1(2a)	4.1(2a).x

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo