Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

Cisco Secure Access Control System Java Deserialization Vulnerability Allowing Arbitrary Command Execution

Vulnerability

Exploited

Patched

A vulnerability exists in Cisco Secure Access Control System (ACS) versions prior to 5.8 patch 9, allowing an unauthenticated, remote attacker to execute arbitrary commands with root privileges on the affected device. This vulnerability arises from insecure deserialization of user-supplied content, which can be exploited by sending a crafted serialized Java object.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of commands on the affected device with root privileges.

Remediation

Cisco has released a cumulative patch in version 5.8.0.32.9 that addresses this vulnerability. This version can be downloaded from the Cisco Software Center. For guidance on obtaining the update, refer to the Cisco Security Vulnerability Policy.

Added: May 15, 2026, 9:06 AM

Updated: May 15, 2026, 9:06 AM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

9.4

remediation

7.7

relevance

0.0

threat

8.1

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

9.4

remediation

7.7

relevance

0.0

threat

8.1

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

Cisco Secure Access Control System Java Deserialization Vulnerability Allowing Arbitrary Command Execution

Vulnerability

Impact

Remediation

Affected Products

Cisco Secure Access Control System

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating