Critical Cisco Secure Workload Vulnerability Enables Unauthorized API Access

Cisco has disclosed a critical security vulnerability in its Secure Workload platform that could allow unauthenticated attackers to gain unauthorized access to sensitive resources via internal APIs. The flaw, tracked as CVE-2026-20223, carries a maximum CVSS score of 10.0 and is categorized under CWE-306 (Missing Authentication for Critical Function). The issue stems from improper authentication […] The post Critical Cisco Secure Workload Vulnerability Enables Unauthorized API Access appeared first on Cyber Security News.