Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

**Cisco has issued an urgent advisory for CVE-2026-20245**, a high-severity (CVSS 7.8) zero-day in Cisco Catalyst SD-WAN Manager that is being actively exploited in the wild with no patch available; the flaw affects on-premises and Cisco-managed deployments and may allow attackers to escape the application context to impact underlying hosts or managed devices—organizations should immediately restrict management-plane access, increase monitoring, apply Cisco workarounds, and prepare for emergency patching.