Security News

Cybersecurity news aggregator

🌐
CRITICAL Vulnerabilities Sophos News

Cisco SD-WAN vulnerabilities (CVE-2026-20127, CVE-2022-20775) in active exploitation

cve-2026-20127cve-2022-20775ciscosd-wankev-boosted
Two critical Cisco SD-WAN vulnerabilities are under active exploitation: CVE-2026-20127 (CVSS 10.0) affects Cisco Catalyst SD-WAN Manager versions prior to 20.9.8.2, 20.11 through 20.12.5.3, 20.13 through 20.15.4.2, 20.16 through 20.18.2.1, and specifically version 20.12.6, requiring an upgrade to the corresponding fixed versions listed. CVE-2022-20775 (CVSS 7.8) affects Cisco Catalyst SD-WAN Manager and vBond Orchestrator versions prior to 20.6.3 and 20.7 through 20.7.2, as well as version 20.8, with patches available in versions 20.6.3 and 20.7.2. The article does not specify the attack vectors or provide workaround guidance.
Read Full Article →

Categories: Threat Research Tags: advisory, vulnerability, SD-WAN

Related Articles

CRITICAL Critical Cisco Catalyst Vulnerability Exploited in the wild (CVE-2026-20127) Rapid7 Research CRITICAL Five Eyes issue emergency directive on exploited Cisco SD-WAN zero-day CSO Online CRITICAL Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access The Hacker News CRITICAL 2026-002: Multiple Vulnerabilities in Cisco Products CERT-EU
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn