The Hacker News

Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access

Cisco warns CVE-2026-20127 (CVSS 10.0) in SD-WAN is exploited since 2023 to gain admin access; CISA adds it to KEV and mandates urgent fixes.
Techzine Europe

Cisco details further vulnerabilities in Catalyst SD-WAN Manager

Cisco has disclosed five vulnerabilities in Catalyst SD-WAN Manager, two of which are being actively exploited. The most ...
SecurityWeek

Cisco Patches Catalyst SD-WAN Zero-Day Exploited by Highly Sophisticated Hackers

Patches were released for a Cisco Catalyst SD-WAN zero-day exploited in the wild to bypass authentication and gain administrative privileges.
Infosecurity Magazine

Global Cyber Agencies Urge Immediate Patching of Cisco SD-WAN Zero Day

Government security agencies in the UK, US, Canada, Australia and New Zealand have urged Cisco customers to take immediate action to patch a critical zero-day bug in their SD-WAN kit that has been ...
Cybernews

Massive Cisco flaw puts corporate networks at risk: CISA issues emergency order

A maximum severity vulnerability is affecting Cisco Catalyst SD-WAN Controller and Cisco Catalyst SD-WAN Manager, prompting ...

Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023

Cisco is warning that a critical authentication bypass vulnerability in Cisco Catalyst SD-WAN, tracked as CVE-2026-20127, was ...
Computer Weekly

Cisco Catalyst SD-WAN users targeted in series of cyber attacks

The NCSC, Cisa, and other Five Eyes agencies have warned of mass exploitation of vulnerabilities in Cisco Catalyst SD-WAN, which Cisco is attributing to an unknown threat actor called UAT-8616.