logo

Cisco adds another SD-WAN box to max-severity bug advisory

ID: 64177b61-f79e-5eeb-9d2a-8ae3ca072bdd

STIX ID: report--64177b61-f79e-5eeb-9d2a-8ae3ca072bdd

Feed Name: The Register (Security)

Threat Score
90/100

Date Published: 2026-06-17

Date Updated: 2026-06-17

...
...

Cisco updated its advisory to include Catalyst SD-WAN Validator (formerly vBond) among systems affected by CVE-2026-20127, a maximum-severity improper-authentication flaw that can grant admin rights and — when chained with CVE-2022-20775 — persistent root access; Cisco Talos links exploitation to a sophisticated actor tracked as UAT-8616 and national bodies (Five Eyes, NCSC-UK) have issued alerts and mitigation guidance.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.