CVE-2026-20080
Unknown Unknown - Not Provided
Denial of Service in Cisco IEC6400 SSH Service

Publication date: 2026-01-21

Last updated on: 2026-01-21

Assigner: Cisco Systems, Inc.

Description
A vulnerability in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software could allow an unauthenticated, remote attacker to cause the SSH service to stop responding. This vulnerability exists because the SSH service lacks effective flood protection. An attacker could exploit this vulnerability by initiating a denial of service (DoS) attack against the SSH port. A successful exploit could allow the attacker to cause the SSH service to be unresponsive during the period of the DoS attack. All other operations remain stable during the attack.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-21
Last Modified
2026-01-21
Generated
2026-06-16
AI Q&A
2026-01-21
EPSS Evaluated
2026-06-15
NVD
CVE-2026-20080
EUVD
EUVD-2026-3662
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
cisco iec6400_wireless_backhaul_edge_compute_software 1.2.0
cisco iec6400_wireless_backhaul_edge_compute_software to 1.2.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-400 The product does not properly control the allocation and maintenance of a limited resource.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a medium-severity issue in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software. It occurs because the SSH service lacks effective flood protection, allowing an unauthenticated, remote attacker to flood the SSH service and cause a denial of service (DoS). When exploited, the SSH service becomes unresponsive during the attack, although other device operations remain stable. It affects versions 1.1.0 and earlier with SSH enabled by default. [1]

Impact Analysis

The impact of this vulnerability is that an attacker can cause the SSH service on the affected device to stop responding by flooding it, resulting in a denial of service (DoS). This means you could lose remote SSH access to the device during the attack, potentially disrupting management or automation tasks that rely on SSH. However, other device operations will continue to function normally during the attack. [1]

Detection Guidance

There are no specific detection commands or methods provided for this vulnerability. However, monitoring for unusual SSH service unresponsiveness or high SSH port traffic indicative of a flood attack may help detect exploitation attempts. [1]

Mitigation Strategies

Immediate mitigation steps include disabling the SSH service if it is not required by using the CLI command `ssh-server disable` or through the web UI by unchecking the SSH option. This mitigation has been tested successfully but may impact network functionality. The recommended full remediation is to upgrade to Cisco IEC6400 Wireless Backhaul Edge Compute Software version 1.2.0, which contains the fix for this vulnerability. [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-20080. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart