Cisco Vulnerability Rollup (2026-05-15)

CVE-2026-20182 is a critical (CVSS 9.8) authentication bypass in Cisco Catalyst SD-WAN Controller and SD-WAN Manager, allowing unauthenticated remote attackers to gain administrative control of the SD-WAN management plane. Active exploitation is reported in security media; specific affected versions must be confirmed against the Cisco Security Advisory cisco-sa-sdwan-rpa-EHchtZk. Organizations running Cisco Catalyst SD-WAN with internet-accessible management interfaces face an immediate risk of full WAN infrastructure takeover.

Author

Cisco — Vulnerability Rollup (2026-05-15)

Vulnerability Summary

Linked Intelligence Items (1)

Gallery

Contacts

Tech Jacks Solutions

Services

Learn

Company