Catalyst SD-WAN - Geek Feed

Cisco fixes SD-WAN vManage flaw exploited in zero-day attacks

June 18, 2026June 18, 2026 geekfeed0Tagged 0day, Catalyst SD-WAN, cisco, Cisco SD-WAN VManage, CVE-2026-20262, Zero-Day

Cisco has released security updates to address a vulnerability in the Catalyst SD-WAN Manager, tracked as CVE-2026-20262, that was exploited in attacks to escalate to root privileges. Formerly known as SD-WAN vManage, this network management software allows admins to manage up to 6,000 SD-WAN devices from a single dashboard. The now-patched zero-day security flaw affects all deployment […]

2 mins read

Cisco warns of unpatched SD-WAN zero-day exploited in attacks

June 7, 2026June 7, 2026 geekfeed0Tagged Actively Exploited, Catalyst SD-WAN, cisco, Cisco SD-WAN VManage, Command Injection, CVE-2026-20245, Elevation of Privileges, Privilege Escalation, root

On Thursday, Cisco warned of a high-severity, unpatched zero-day in the Cisco Catalyst SD-WAN Manager (tracked as CVE-2026-20245) actively exploited in attacks enabling root privilege escalation. The zero-day flaw impacts all deployment types, including On-Prem Deployment, Cisco SD-WAN Cloud-Pro, Cisco SD-WAN Cloud (Cisco Managed), and Cisco SD-WAN for Government (FedRAMP). In a Thursday advisory, Cisco said the […]

3 mins read

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

May 17, 2026May 17, 2026 geekfeed0Tagged 0day, Actively Exploited, Authentication Bypass, Catalyst SD-WAN, cisco, CVE-2026-20182, Peering, Zero-Day

Cisco is warning that a critical Catalyst SD-WAN Controller authentication bypass flaw, tracked as CVE-2026-20182, was actively exploited in zero-day attacks that allowed attackers to gain administrative privileges on compromised devices. CVE-2026-20182 has a maximum severity of 10.0 and impacts Cisco Catalyst SD-WAN Controller and Cisco Catalyst SD-WAN Manager in on-prem and SD-WAN Cloud deployments. In an […]

3 mins read

CISA flags new SD-WAN flaw as actively exploited in attacks

April 23, 2026April 23, 2026 geekfeed0Tagged Actively Exploited, Catalyst SD-WAN, CISA, cisco, CVE-2026-20133, Information Disclosure

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has given government agencies four days to secure their systems against another Catalyst SD-WAN Manager vulnerability it flagged as actively exploited in attacks. Catalyst SD-WAN Manager (formerly known as vManage) is a network management software that helps admins monitor and manage up to 6,000 Catalyst SD-WAN devices […]

2 mins read

Cisco flags more SD-WAN flaws as actively exploited in attacks

March 8, 2026March 8, 2026 geekfeed0Tagged Actively Exploited, Catalyst SD-WAN, cisco, Cisco SD-WAN VManage, CVE-2026-20122, CVE-2026-20128

Cisco has flagged two Catalyst SD-WAN Manager security flaws as actively exploited in the wild, urging administrators to upgrade vulnerable devices. Catalyst SD-WAN Manager (formerly vManage) is network management software that enables admins to monitor and manage up to 6,000 Catalyst SD-WAN devices from a single centralized dashboard. “In March 2026, the Cisco PSIRT became […]

2 mins read