The Hacker News

Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access

Cisco patches critical CVSS 10.0 flaw in Secure Workload — unauthenticated attackers can steal data & escalate privileges ...
Network World

Critical vulnerability in Cisco Secure Workload rated at maximum severity

The easily exploited hole could give an unauthenticated threat actor site admin privileges, even across tenant boundaries.
Techzine Europe

Cisco Secure Workload vulnerability can be exploited via API call

Cisco warns of a critical vulnerability in Secure Workload that grants attackers full Site Admin privileges without authentication. The bug scores a ...
SecurityWeek

Cisco Patches Critical Vulnerability in Secure Workload

A critical vulnerability in Cisco Secure Workload allows unauthenticated, remote attackers to gain Site Admin privileges.
Arabian Post on MSN

Cisco workload flaw exposes API controls

Cisco has issued an urgent security fix for a maximum-severity flaw in Secure Workload that could let unauthenticated attackers obtain Site Admin privileges and reach sensitive enterprise resources ...
PCQuest

Cisco Secure Workload flaw turns defender tools into a security risk

Security: Cisco Secure Workload patch fixes CVE-2026-20223, a critical API flaw that could expose sensitive data, policy ...