CVE Tools
Back to feed
Хакер (xakep.ru) ·RU-RU Restricted Exploited in the wildCisco Catalyst SD-WAN ManagerSD-WAN vManage

Cisco патчит уязвимость нулевого дня в SD-WAN

By Мария Нефёдова··1 min read
CVE Tools coverage

Cisco has released patches for the zero-day vulnerability CVE-2026-20262 in Catalyst SD-WAN Manager (formerly SD-WAN vManage). The issue has been observed in real-world attacks, where it could be leveraged to escalate privileges to root by sending a crafted HTTP request that allowed creation or overwriting of arbitrary files via a vulnerable API. This matters for organizations managing SD-WAN centrally—CISA has added CVE-2026-20262 to its known exploited vulnerabilities catalog and directed federal agencies to remediate by 29 June 2026.