News Score: Score the News, Sort the News, Rewrite the Headlines
7.8

Critical Cisco SD-WAN authentication bypass bug, CVE-2026-20127, exploited since 2023 by sophisticated threat actors; attackers add rogue peers, gain root access, compromise federal networks globally

bleepingcomputer.com #

Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023

Cisco is warning that a critical authentication bypass vulnerability in Cisco Catalyst SD-WAN, tracked as CVE-2026-20127, was actively exploited in zero-day attacks that allowed remote attackers to compromise controllers and add malicious rogue peers to targeted networks. CVE-2026-20127 has a maximum severity of 10.0 and impacts Cisco Catalyst SD-WAN Controller (formerly vSmart) and Cisco Catalyst SD-WAN Manager (formerly vManage) in on-prem and SD-WAN Cloud installations. Cisco credited the Aus...

Read more at bleepingcomputer.com

© News Score  score the news, sort the news, rewrite the headlines
Leaderboard Submit About