The Hacker News

Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

Cisco Catalyst SD-WAN Manager vulnerability CVE-2026-20245 is under active exploitation and has a CVSS score of 7.8.
Bleeping Computer

Cisco warns of unpatched SD-WAN zero-day exploited in attacks

On Thursday, Cisco warned of a high-severity, unpatched zero-day in the Cisco Catalyst SD-WAN Manager (tracked as CVE-2026-20245) actively exploited in attacks enabling root privilege escalation. The ...
Morning Overview on MSN

CISA issued emergency directive 26-03 ordering federal agencies to patch Cisco’s SD-WAN flaw now, warning attackers are already slipping past the login screen

Federal agencies running Cisco Catalyst SD-WAN equipment face a hard deadline of 5:00 PM ET on February 27, 2026, to patch a ...
SDxCentral

Cisco's SD-WAN nightmare continues with fresh root access vulnerability

Customers urged to audit logs and preserve evidence as flaw allows attackers to gain root access by uploading crafted files ...
Network World

Attackers exploiting unpatched Cisco SD-WAN flaw

The vulnerability enables authenticated attackers to take over the enterprise network management system as root and may be ...