Cisco RoomOS Security Hardening Release: July 2026
Summary
As part of Cisco's ongoing commitment to proactive security and product quality, the Cisco RoomOS engineering team has conducted a comprehensive internal security review. This review resulted in a software hardening release that addresses multiple internally discovered vulnerabilities. These vulnerabilities were found during internal testing and are not known to be actively exploited. To assist customers in patching and to streamline the disclosure process, Cisco has grouped these issues by their underlying vulnerability class — Common Weakness Enumeration (CWE) — and assigned a single Common Vulnerabilities and Exposures Identifier (CVE ID) to each CWE grouping. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-hardening-roomos-AqNMbEq <br/>Security Impact Rating: High <br/>CVE: CVE-2026-20150,CVE-2026-20153,CVE-2026-20156,CVE-2026-20157,CVE-2026-20158,CVE-2026-20187
What this means
In plain English
As part of Cisco's ongoing commitment to proactive security and product quality, the Cisco RoomOS engineering team has conducted a comprehensive internal security review. This review resulted in a software hardening release that addresses multiple internally discovered vulnerabilities. These vulnerabilities were found during internal testing and are not known to be actively exploited.
Recommended action
Primary action: update to a vendor-listed fixed release: 11.32.6.0 / RoomOS 11.39.1.1, 26.5.2.2 / RoomOS June 2026 (26.7.1.7). Vendor mitigation: Upgrade to the first fixed release for your train per the Fixed Releases table in this advisory. Release 11 and earlier: upgrade to 11.32.6.0 / RoomOS 11.39.1.1. Release 26: upgrade to 26.5.2.2 / RoomOS June 2026 (26.7.1.7). Temporary workaround: There are no workarounds that address these vulnerabilities.
Rewritten locally from the scraped official advisory data above; no generative API is used. The vendor advisory is authoritative.
- Scope: These vulnerabilities affect Cisco RoomOS, regardless of device configuration.
- Release 11 and earlier (first fixed: 11.32.6.0 / RoomOS 11.39.1.1)
- Release 26 (first fixed: 26.5.2.2 / RoomOS June 2026 (26.7.1.7))
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
- 11.32.6.0 / RoomOS 11.39.1.1
- 26.5.2.2 / RoomOS June 2026 (26.7.1.7)
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Mitigation checklist
- Upgrade to the first fixed release for your train per the Fixed Releases table in this advisory.
- Release 11 and earlier: upgrade to 11.32.6.0 / RoomOS 11.39.1.1.
- Release 26: upgrade to 26.5.2.2 / RoomOS June 2026 (26.7.1.7).
- There are no workarounds that address these vulnerabilities.
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.