CVE-2026-20262: Cisco Catalyst SD-WAN Manager Zero-Day Leads to Root
ID: 2bc39dd2-5485-5079-a402-25ce49b1656d
STIX ID: report--2bc39dd2-5485-5079-a402-25ce49b1656d
Feed Name: SOCRadar Blog
Threat Score
**CVE-2026-20262** is a zero-day arbitrary file-write (path traversal) vulnerability in Cisco Catalyst SD‑WAN Manager that permits authenticated low-privilege users to create or overwrite files—potentially enabling server-side code deployment and escalation to root; Cisco reports limited in-the-wild exploitation and CISA has added the issue to its Known Exploited Vulnerabilities catalog, with vendor fixed releases and log-based detection guidance provided.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
