
Cisco has disclosed a critical authentication bypass vulnerability in Catalyst SD-WAN controllers that could let a remote unauthenticated attacker gain high-privileged access and manipulate SD-WAN fabric configuration.
Tag archive

Cisco has disclosed a critical authentication bypass vulnerability in Catalyst SD-WAN controllers that could let a remote unauthenticated attacker gain high-privileged access and manipulate SD-WAN fabric configuration.

Cisco has disclosed a critical authentication bypass in Catalyst SD-WAN Controller components that could let a remote unauthenticated attacker gain high-privileged access and manipulate SD-WAN fabric configuration.

Cisco has released fixes for a medium-severity vulnerability in Cisco Catalyst SD-WAN Manager that could let an authenticated remote attacker create or overwrite files through the web UI upload process.

Cisco has disclosed a high-severity authenticated privilege escalation vulnerability in Catalyst SD-WAN Controller, Manager, and Validator that can allow arbitrary command execution as root under specific conditions.

Cisco has disclosed a high-severity privilege escalation flaw in Cisco Catalyst SD-WAN Manager that could let an authenticated local attacker with netadmin privileges execute commands as root. Organizations should preserve logs, collect admin-tech files, upgrade to fixed software, and verify edge device configurations.

Cisco disclosed CVE-2026-20182 as a critical SD-WAN controller authentication bypass with limited exploitation already observed. This guide focuses on exposure, admin-tech collection, upgrade planning, and fabric-risk containment.