Maximum Severity Cisco SD-WAN Bug Exploited in the Wild
ID: e124fad1-10e7-5e74-9102-cb0bc4298be2
STIX ID: report--e124fad1-10e7-5e74-9102-cb0bc4298be2
Feed Name: Dark Reading
Threat Score
A critical authentication bypass (CVE-2026-20182, CVSS 10.0) in Cisco Catalyst SD-WAN Controllers is being actively exploited by a sophisticated actor tracked as UAT-8616, enabling unauthenticated administrative access, NETCONF configuration changes, SSH key insertion and escalation to root; Cisco has released a patch and vendors/researchers (Rapid7, Talos) have flagged in-the-wild exploitation and urged immediate remediation.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.