logo

CVE-2026-20262: Cisco Catalyst SD-WAN Manager Zero-Day Leads to Root

ID: 2bc39dd2-5485-5079-a402-25ce49b1656d

STIX ID: report--2bc39dd2-5485-5079-a402-25ce49b1656d

Feed Name: SOCRadar Blog

Threat Score
75/100

Date Published: 2026-06-16

Date Updated: 2026-06-16

Author: Ameer Owda

...
...

**CVE-2026-20262** is a zero-day arbitrary file-write (path traversal) vulnerability in Cisco Catalyst SD‑WAN Manager that permits authenticated low-privilege users to create or overwrite files—potentially enabling server-side code deployment and escalation to root; Cisco reports limited in-the-wild exploitation and CISA has added the issue to its Known Exploited Vulnerabilities catalog, with vendor fixed releases and log-based detection guidance provided.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.