Insufficient Authorization in Cisco Prime Infrastructure Log File Download Feature
CVE-2026-20189

4.3MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco Prime Infrastructure
Vendor: CVE Published:; 6 May 2026

Badges

👾 Exploit Exists

What is CVE-2026-20189?

A vulnerability in Cisco Prime Infrastructure's log file download functionality allows an authenticated, remote attacker to exploit insufficient authorization checks in the download service API. By crafting a specific URL request, the attacker can retrieve sensitive log files that they do not have proper authorization to access. To exploit this flaw, the attacker must possess valid credentials to the web-based management interface of the affected device.

Affected Version(s)

Cisco Prime Infrastructure 3.6.0

Cisco Prime Infrastructure 3.7.0

Cisco Prime Infrastructure 3.4.0

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
May 6, 2026
Vulnerability published
May 6, 2026
Vulnerability Reserved
Oct 8, 2025

CVE-2026-20189 Data

JSON