URL has been copied successfully!
Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access


Tags: , , , , , , , ,

A newly disclosed maximum-severity security flaw in Cisco Catalyst SD-WAN Controller (formerly vSmart) and Catalyst SD-WAN Manager (formerly vManage) has come under active exploitation in the wild as part of malicious activity that dates back to 2023.The vulnerability, tracked as CVE-2026-20127 (CVSS score: 10.0), allows an unauthenticated remote attacker to bypass authentication and obtain

First seen on thehackernews.com

Jump to article: thehackernews.com/2026/02/cisco-sd-wan-zero-day-cve-2026-20127.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Cisco Firewall and VPN Zero Day Attacks: CVE-2025-20333 and CVE-2025-20362
  2. Five Eyes issue emergency directive on exploited Cisco SD-WAN zero-day
  3. Microsoft’s February 2025 Patch Tuesday Addresses 55 CVEs (CVE-2025-21418, CVE-2025-21391)
  4. SolarWinds, again: Critical RCE bugs reopen old wounds for enterprise security teams