Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Cisco Catalyst SD-WAN Vulnerabilities

cisco-sa-sdwan-authbp-qwCX8D4v · Critical · Published · Updated

Multiple vulnerabilities in Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an attacker to access an affected system, elevate privileges to root, gain access to sensitive information, and overwrite arbitrary files.  For more information about these vulnerabilities, see the Details section of this advisory. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. Cisco strongly recommends that customers upgrade to the fixed software indicated in this advisory. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-authbp-qwCX8D4v

Cisco advisory · CSAF JSON

Workarounds

There are no workarounds that address these vulnerabilities. Cisco strongly recommends that customers upgrade to the fixed software indicated in this advisory.

CVEsCVE-2026-20122, CVE-2026-20126, CVE-2026-20128, CVE-2026-20129, CVE-2026-20133
Cisco Bug IDsCSCws93470, CSCws33584, CSCws33586, CSCws33585, CSCws33587, CSCws33583
CVSS ScoreBase 8.8
Base 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X
Base 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N/E:X/RL:X/RC:X
Base 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H/E:X/RL:X/RC:X
Base 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X
Base 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:X/RL:X/RC:X
Product Names From Source
Cisco Catalyst SD-WAN Manager

Related Products

Product CVE Evidence
Cisco Catalyst SD-WAN Manager CVE-2026-20133 Cisco OpenVuln
Cisco Catalyst SD-WAN Manager CVE-2026-20128 Cisco OpenVuln
Cisco Catalyst SD-WAN Manager CVE-2026-20122 Cisco OpenVuln
Cisco Catalyst SD-WAN CVE-2026-20133 Cisco OpenVuln
Cisco Catalyst SD-WAN CVE-2026-20128 Cisco OpenVuln
Cisco Catalyst SD-WAN CVE-2026-20122 Cisco OpenVuln
Cisco Catalyst SD-WAN Manager CVE-2026-20129 Cisco OpenVuln
Cisco Catalyst SD-WAN Manager CVE-2026-20126 Cisco OpenVuln
Cisco Catalyst SD-WAN CVE-2026-20129 Cisco OpenVuln
Cisco Catalyst SD-WAN CVE-2026-20126 Cisco OpenVuln