CyberSec.Space Logo
Back to CVE Browser

CVE-2026-20182

Known Exploited (CISA KEV)HIGH
7.4
CVSS Severity Score
EPSS Score38.8210%
EPSS Percentile95.43th
PublishedMay 14, 2026
Last ModifiedJun 12, 2026

Vulnerability Description

Cisco Catalyst SD-WAN is vulnerable to Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability. Please adhere to CISA’s guidelines to assess exposure and mitigate risks associated with Cisco SD-WAN devices as outlined in CISA’s Emergency Directive 26-03 (URL listed below in Notes) and CISA’s Hunt & Hardening Guidance for Cisco SD-WAN Devices (URL listed below in Notes). Adhere to the applicable BOD 22-01 guidance for cloud services or discontinue use of the product if mitigations are not available.

Affected Platforms (CPE)

📦
Cisco

Catalyst SD-WAN

Refer to description

Related Vulnerabilities

CVE-2026-201228.7

Cisco Catalyst SD-WAN Manager contains an incorrect use of privileged APIs vulnerability due to improper file handling on the API ...

CVE-2026-201288.3

Cisco Catalyst SD-WAN Manager contains a storing passwords in a recoverable format vulnerability that allows an authenticated, loc...

CVE-2026-201338.2

Cisco Catalyst SD-WAN Manager contains an exposure of sensitive information to an unauthorized actor vulnerability that could allo...

CVE-2026-202457.8

Cisco Catalyst SD-WAN Manager is vulnerable to Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability...