Dossier
Catalyst SD-WAN Controller
Coverage of Catalyst SD-WAN Controller in the Nexus archive.
- Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks
Cisco has warned of a critical flaw in its Catalyst SD-WAN Controller that is being exploited in zero-day attacks, allowing attackers to gain administrative privileges on compromised devices. The flaw, tracked as CVE-2026-20182, is an authentication bypass vulnerability. Cisco is warning users to take immediate action to protect their devices.
- Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access
Cisco released updates to address a severe authentication bypass flaw in Catalyst SD-WAN Controller, which has been exploited in limited attacks, carrying a CVSS score of 10.0. The vulnerability is tracked as CVE-2026-20182 and affects Cisco Catalyst SD-WAN Controller and Cisco Catalyst SD-WAN Manager.