Volerion logoVolerion
Volerion logoVolerion

Cisco ThousandEyes Virtual Appliance Authenticated Remote Code Execution Vulnerability

Vulnerability

A vulnerability exists in the SSL certificate handling of Cisco ThousandEyes Virtual Appliance, allowing authenticated, remote attackers to execute commands on the underlying operating system as the root user. This issue arises from inadequate validation of user-supplied input. An attacker with valid administrative credentials could exploit this vulnerability by uploading a crafted certificate to the affected device, leading to arbitrary code execution as the root user.

Impact

Exploitation of this vulnerability allows for authenticated remote code execution on the affected system, with the executed commands running as the root user.

Remediation

Users are advised to upgrade to Cisco ThousandEyes Virtual Appliance version 0.262.0 or later. For instructions on obtaining the update, contact the Cisco Technical Assistance Center (TAC) or visit the Cisco Support and Downloads page.

Added: May 20, 2026, 5:24 PM
Updated: May 20, 2026, 5:24 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
10.0
exploitability
4.8
remediation
0.0
relevance
8.9
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.