Post
CRITICAL ⚡ MUST-KNOW

Cisco Catalyst SD-WAN Manager Zero-Day CVE-2026-20245 Actively Exploited, No Patch Available

· zero-day · privilege-escalation · rce · vulnerability · cve

Cisco disclosed CVE-2026-20245, a high-severity unpatched zero-day in Cisco Catalyst SD-WAN Manager that is actively being exploited in the wild to achieve arbitrary command execution as root. No patch is currently available. This is the seventh SD-WAN zero-day Cisco has disclosed in 2026, indicating sustained attacker interest in SD-WAN infrastructure. Administrators should immediately restrict management-plane access to trusted IPs only and monitor Cisco’s PSIRT advisories for patch availability. Network segmentation and anomaly detection on SD-WAN management traffic are recommended interim mitigations.