Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2201
Views
1
Helpful
7
Replies

Cisco ISE 3.4 Patch 6

millsbenjamin66
Community Member

‎04-17-2026 11:58 AM

Trying to upgrade to ISE to patch the newly published CVEs. Apparently the recommended approach from Cisco is to patch immediately. How am I supposed to do this if the patch isn’t available to download?

CVE-2026-20147 - 'Improper Neutralization of Special Elements used in a Command' vulnerability - CVSS v3.1 Base Score: 9.9

CVE-2026-20148 - 'Improper Limitation of a Pathname to a Restricted Directory' vulnerability - CVSS v3.1 Base Score: 4.9

CVE-2026-20186 - 'Improper Neutralization of Special Elements used in a Command' vulnerability - CVSS v3.1 Base Score: 9.9

CVE-2026-20180 - 'Improper Limitation of a Pathname to a Restricted Directory' vulnerability - CVSS v3.1 Base Score: 9.9

0 Helpful
7 Replies 7

aleabrahao
Meraki Community All-Star
Meraki Community All-Star

‎04-17-2026 12:16 PM

Cisco says it will be available sometime in April, we need to wait.

I am not a Cisco employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Helpful

millsbenjamin66
Community Member
In response to aleabrahao

‎04-17-2026 12:25 PM

They really need to make that much more clearer. I couldn’t even get that answer from TAC

aleabrahao
Meraki Community All-Star
Meraki Community All-Star
In response to millsbenjamin66

‎04-17-2026 12:32 PM

aleabrahao_0-1776454311932.png

 

I am not a Cisco employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Helpful

millsbenjamin66
Community Member
In response to aleabrahao

‎04-17-2026 01:02 PM

I’m sorry but in no way is that clear. We are in April 2026 and 3.3 Patch 11 is available to there is huge inconsistency.

0 Helpful

aleabrahao
Meraki Community All-Star
Meraki Community All-Star
In response to millsbenjamin66

‎04-17-2026 01:13 PM

April isn't over yet, as far as I remember, so we have to wait.

I am not a Cisco employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Helpful

beepmeep
Level 3
Level 3

‎04-17-2026 11:20 PM

We, as a Cisco partner was briefed about this... Don't you use a Cisco partner you could ask? Anyway, in the field notice about public TLS certs, there is the following paragraph, so they should arrive soon:

Upgrade Cisco ISE system software to a patch release that introduces updated certificate handling for certificates issued under the new CA policies. The following patches will be released starting mid-April 2026: 

Cisco ISE Release Patch

3.1Patch 11
3.2Patch 10
3.3Patch 11
3.4Patch 6
3.5Patch 3

 

0 Helpful

Marcelo Morais
VIP
VIP

‎04-19-2026 04:00 PM

Hi @millsbenjamin66 ,

 please take a look at ISE - CVE: release 3.x.

 

Hope this helps !

 

0 Helpful
Customers Also Viewed These Support Documents