Home/Tag/Sd Wan

Sd Wan

5 articles tagged with "Sd Wan"

Vulnerabilities3 min read

Cisco SD-WAN Auth Bypass Hits CVSS 10.0, CISA Sets May 17 Deadline

CVE-2026-20182 allows unauthenticated attackers to gain admin access to Cisco Catalyst SD-WAN controllers. CISA added it to the KEV catalog after confirmed exploitation.

Marcus ChenMay 15, 2026

Vulnerabilities4 min read

Cisco SD-WAN Flaws CVE-2026-20122 and 20128 Under Active Attack

Cisco confirms active exploitation of two more SD-WAN Manager vulnerabilities. Attackers deploying web shells through arbitrary file overwrite and credential exposure flaws.

Marcus ChenMar 7, 2026

Vulnerabilities3 min read

Cisco SD-WAN Manager Flaws Actively Exploited for Web Shells

Cisco confirmed CVE-2026-20122 and CVE-2026-20128 in Catalyst SD-WAN Manager are under active exploitation, with attackers deploying web shells globally.

Marcus ChenMar 7, 2026

Vulnerabilities4 min read

Cisco SD-WAN Zero-Day Exploited Since 2023 Prompts CISA Alert

CVE-2026-20127 gives attackers full admin access to Cisco SD-WAN infrastructure. CISA emergency directive requires federal patches by Feb 27.

Marcus ChenFeb 25, 2026

Vulnerabilities4 min read

CVSS 10.0 Zero-Day Hits 70,000 XSpeeder Devices

CVE-2025-54322 enables unauthenticated root RCE on SD-WAN appliances and edge routers. Vendor has ignored seven months of disclosure attempts. No patch available.

Marcus ChenJan 1, 2026