CVE-2026-20188
Following the initial publication of the Security Advisory about a denial of service (DoS) condition in Cisco Crosswork Network Controller and Cisco Network Services Orchestrator (NSO), additional information has been made available to the Cisco Product Security Incident Response Team (PSIRT). Upon further analysis, the Cisco PSIRT has reclassified this issue as a customer-configurable, resource management issue rather than a security vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nso-dos-7Egqyc Security Impact Rating: Informational CVE: CVE-2026-20188
CSIRTS triage
- What
- A denial of service condition has been reclassified as a resource management issue.
- Who is affected
- Users of Cisco Crosswork Network Controller and NSO.
- Urgency
- Urgency is informational as it is not classified as a security vulnerability.
- Action
- No specific action is required.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch CVE-2026-20188
Get an email if CVE-2026-20188 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.
Exploitation outlook
- Low exploitation risk0.31% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 23% of all EPSS-scored CVEs.
Advisory coverage (1)
- unknownCisco Crosswork Network Controller and Cisco Network Services Orchestrator Advisorycisco-psirt · 2026-05-14
External references
Embed the live status
— this badge updates automatically when the KEV or exploit status changes. How to embed it →
[](https://www.csirts.com/cve/CVE-2026-20188)