Piece of news of the day

ADVANCED SECURITY EUROPA

EOOD

Cisco Catalyst SD-WAN Manager Zero-Day Exploited: Root Privilege Escalation Warning Issued

05 June 2026

Cisco issued a warning about a high-severity zero-day vulnerability (CVE-2026-20245) in the Cisco Catalyst SD-WAN Manager that allows for root privilege escalation.
The flaw affects various deployment types and is being actively exploited in attacks.
The issue arises from insufficient user input validation, enabling local attackers with low privileges to execute arbitrary commands as root.
Cisco advised customers to upgrade to software fixed for a previously exploited flaw (CVE-2026-20182) and is working on patches for the current vulnerability.
This is not the first time Cisco has addressed security vulnerabilities in its SD-WAN Manager, with several other flaws being actively exploited in recent years.
Customers are urged to monitor their systems for indicators of compromise and contact Cisco TAC for assistance if needed.