Cisco released critical security updates for its Integrated Management Controller (IMC) to address CVE-2026-20093, a vulnerability with a CVSS score of 9.8 that allows unauthenticated remote attackers to bypass authentication and gain elevated privileges. The flaw stems from incorrect handling of password change requests, where attackers can send crafted HTTP requests to affected devices. Successful exploitation allows attackers to alter passwords of any system user, including admin accounts, and gain unauthorized access. This vulnerability particularly threatens crypto mining operations and blockchain infrastructure that rely on Cisco hardware for network management. Security researcher 'jyh' discovered and reported the vulnerability. Organizations running crypto mining facilities, blockchain nodes, or cryptocurrency exchanges using affected Cisco hardware should immediately apply patches to prevent potential infrastructure compromises that could lead to wallet access or mining operation disruption.