Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

A high-severity vulnerability (CVE-2026-20245, CVSS 7.8) in Cisco Catalyst SD-WAN Manager is actively exploited with no patch available.

• •CLI command injection enables authenticated netadmin users to execute arbitrary commands as root through crafted file uploads
• •Requires valid credentials or prior exploitation of authentication bypass flaws (CVE-2026-20182, CVE-2026-20127)
• •No patches available; customers should upgrade SD-WAN software and monitor /var/log/scripts.log for compromise signals

This summary was automatically generated by AI based on the original article and may not be fully accurate.