CVE-2026-20245 Cisco Catalyst SD-WAN Controller Authenticated Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, and Cisco Catalyst SD-WAN Validator, formerly SD-WAN vBond, could allow an authenticated, local attacker to execute arbitrary commands as root by supplyi...

PT-2022-6177 · Cisco · Cisco Sd-Wan +1

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE SD-WAN Software affected versions not specified Cisco SD-WAN Software affected versions not specified Description: A vulnerability in the CLI of stand-alone Cisco IOS XE SD-WAN Software and Cisco SD-WAN Software could allow an...

The vulnerability of the CLI component in Cisco IOS XE routers for Cisco IOS XE SD-WAN allows a attacker to gain access to the basic operating system with superuser privileges.

The vulnerability of Cisco IOS XE operating system routers in Cisco IOS XE SD-WAN devices exists due to insufficient validation of input data. Exploiting this vulnerability can allow attackers to gain access to the basic operating system with superuser privileges...

The vulnerability of the programmatically defined Cisco SD-WAN network, related to lack of access control, allows a hacker to bypass authentication procedures and gain access to system files.

The vulnerability of the programmatically defined Cisco SD-WAN network is related to lack of access control. Exploiting this vulnerability could allow a attacker to bypass authentication procedures and gain access to system files...