Critical Authentication Bypass Vulnerability in Cisco Catalyst SD-WAN Exploited

**Executive Summary:** A critical authentication bypass (CVE-2026-20182) in the Cisco Catalyst SD-WAN Controller's vdaemon service (CVSS 10.0) is being actively exploited by threat actor UAT-8616 to gain unauthorized privileged access, enabling modification of NETCONF configurations and SSH key injection; Cisco has published an advisory and urges immediate patching.