Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access [email protected] (The Hacker News)

An unknown threat actor exploited a recently disclosed high-severity security flaw impacting Cisco Catalyst SD-WAN as a zero-day at least two months before it was publicly disclosed, according to new findings from Google-owned Mandiant.

The vulnerability, tracked as CVE-2026-20245 (CVSS score: 7.8), allows an authenticated, local attacker to execute arbitrary commands with elevated privilegesRead More 


Posted

in

by

Tags: