CYBERHAWK / CVE / CVE-2026-20245
CVE-2026-20245
Catalyst SD-WAN Manager
ACTIVELY EXPLOITED (KEV)
other
The flaw
Cisco Catalyst SD-WAN Manager formerly SD-WAN vManage contains an improper encoding or escaping of output vulnerability. This vulnerability could allow an authenticated, local attacker to execute arbitrary commands as root by supplying a cr
What to do
Review advisory and patch per vendor guidance.
References
In the news
- Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch AvailableThe Hacker News · 2026-06-06
- Cisco SD-WAN 0-day exploited, no patch available (CVE-2026-20245)Help Net Security · 2026-06-05
- Active Exploitation Alert: Cisco Catalyst SD-WAN Manager CVE-2026-20245 Zero-Day Under Attack With No Patch AvailableRescana · 2026-06-07