CVE-2026-20133

Confirmed PUBLISHED

A vulnerability in Cisco Catalyst SD-WAN Software could allow an unauthenticated, remote attacker to view sensitive information on an affected...

Cisco · Cisco Catalyst SD-WAN Manager

1 day faster than CISA KEV

Exploited in the wild

Recommended Action

Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.

Confidence
Confirmed
Exploitation Status
Exploited in the wild
Observed in Sensors
No
Attempts (30d)
Unique Attacker IPs
CISA KEV
In CISA KEV
CVSS / EPSS
6.5 Medium EPSS 10.2%

At a Glance

A vulnerability in Cisco Catalyst SD-WAN Software could allow an unauthenticated, remote attacker to view sensitive information on an affected system. This vulnerability is due to insufficient file system restrictions. An authenticated attacker with netadmin privileges could exploit this vulnerability by accessing the vshell of an affected system. A successful exploit could allow the attacker to read sensitive information on the underlying operating system.

cisa edge
CVE Published
Feb 25, 2026
Exploitation Reported
Jun 01, 2026
CVSS
6.5 Medium
EPSS
10.2%
Remote Low complexity No user interaction

Affected Versions

161 version rows · page 1 of 7

Vendor Product Version Status
Cisco
Cisco Catalyst SD-WAN Manager

17.2.6

Affected
Cisco
Cisco Catalyst SD-WAN Manager

17.2.7

Affected
Cisco
Cisco Catalyst SD-WAN Manager

17.2.8

Affected
Cisco
Cisco Catalyst SD-WAN Manager

17.2.9

Affected
Cisco
Cisco Catalyst SD-WAN Manager

17.2.10

Affected
Cisco
Cisco Catalyst SD-WAN Manager

17.2.4

Affected
Cisco
Cisco Catalyst SD-WAN Manager

17.2.5

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.3.1.1

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.3.3.1

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.3.3

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.3.4

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.3.5

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.3.7

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.3.8

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.3.6.1

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.3.1

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.3.0

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.4.0.1

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.4.3

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.4.302

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.4.303

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.4.4

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.4.5

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.4.0

Affected
Cisco
Cisco Catalyst SD-WAN Manager

18.4.1

Affected

CVE References

Recommended Actions

  • Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.