{"id":226622,"date":"2026-03-23T06:30:00","date_gmt":"2026-03-23T10:30:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/03\/23\/cisa-orders-us-government-to-patch-maximum-severity-cisco-flaw\/"},"modified":"2026-03-23T06:45:16","modified_gmt":"2026-03-23T10:45:16","slug":"cisa-orders-us-government-to-patch-maximum-severity-cisco-flaw","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/03\/23\/cisa-orders-us-government-to-patch-maximum-severity-cisco-flaw\/","title":{"rendered":"CISA Orders US Government to Patch Maximum Severity Cisco Flaw"},"content":{"rendered":"<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/cisa-orders-us-government-patch\/\">CISA Orders US Government to Patch Maximum Severity Cisco Flaw<\/a><\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/cisa-orders-us-government-patch\/\">https:\/\/www.infosecurity-magazine.com\/news\/cisa-orders-us-government-patch\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-03-23 06:30:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.infosecurity-magazine.com\">www.infosecurity-magazine.com<\/a><\/p>\n<p>The US Cybersecurity and Infrastructure Security Agency (CISA) has told all federal civilian agencies to patch a critical remote code execution (RCE) vulnerability in a Cisco firewall product, as ransomware actors circle.<\/p>\n<p>CVE-2026-20131 affects the web-based management interface of Cisco Secure Firewall Management Center (FMC). With a maximum CVSS score of 10, it could \u201callow an unauthenticated, remote attacker to execute arbitrary Java code as\u00a0root\u00a0on an affected device,\u201d\u00a0according to the vendor.<\/p>\n<p>It was patched by Cisco on March 4 after reports the Interlock ransomware group had been exploiting it as a zero day for several months.<\/p>\n<p>CISA added the CVE to its known exploited vulnerabilities (KEV) catalog on Thursday 19 March, giving agencies just three days to patch it or \u201cdiscontinue use of the product if mitigations are unavailable.\u201d<\/p>\n<p>That\u2019s an unusually short timeline for CISA, reflective of the urgency of the situation. The entry also has a warning note attached stating that the CVE is \u201cknown to be used in ransomware campaigns.\u201d<\/p>\n<p>Read more on Cisco zero days: Global Cyber Agencies Urge Immediate Patching of Cisco SD-WAN Zero Day.<\/p>\n<p>Cisco Secure Firewall Management Center (FMC) is described by the vendor as providing an \u201cadministrative nerve center\u201d for Cisco network security products. It delivers centralized management of firewalls, application control, intrusion prevention, URL filtering, and advanced malware protection, Cisco said.<\/p>\n<p>This vulnerability is \u201cdue to insecure deserialization of a user-supplied Java byte stream,\u201d according to the CVE Program.<\/p>\n<p>\u201cAn attacker could exploit this vulnerability by sending a crafted serialized Java object to the web-based management interface of an affected device,\u201d it explained. \u201cA successful exploit could allow the attacker to execute arbitrary code on the device and elevate privileges to root.\u201d<\/p>\n<h2><strong>How Attackers Are Using the CVE<\/strong><\/h2>\n<p>AWS published a detailed write up of the Interlock&#8230;<\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/cisa-orders-us-government-patch\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>CISA Orders US Government to Patch Maximum Severity Cisco Flaw https:\/\/www.infosecurity-magazine.com\/news\/cisa-orders-us-government-patch\/ Publish Date: 2026-03-23 06:30:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":226623,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/assets.infosecurity-magazine.com\/webpage\/og\/1cdd4eea-deee-42b7-a2da-44b4dcfcdbef.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24,31,32,29,27],"class_list":["post-226622","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity","tag-exploit","tag-malware","tag-network-security","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/226622"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=226622"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/226622\/revisions"}],"predecessor-version":[{"id":226624,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/226622\/revisions\/226624"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/226623"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=226622"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=226622"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=226622"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}