Skip to content

Patch Now! Attackers Targeting Cisco Catalyst SD-WAN Controller

Attackers are actively exploiting a critical vulnerability (CVE-2026-20182) in the Cisco Catalyst SD-WAN Controller rated with a CVSS score of 10 out of 10, which allows remote attackers to bypass authentication and gain unauthorized access through a flaw in the peering authentication mechanism.

Share on:

CISA Adds Critical Cisco SD-WAN Vulnerability to KEV Catalog

CISA has added a critical authentication vulnerability (CVE-2026-93) in Cisco SD-WAN Controller to its KEV catalog; federal agencies must patch by May 2026, and threat group UAT-8616 is already actively exploiting it while at least ten threat groups are exploiting related vulnerabilities and installing web shells on sy

Share on: