Cisco News Articles

CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits

Ravie LakshmananMay 15, 2026Vulnerability / Credential Theft

5 days ago

Cyberscoop

Cisco zero-day under ongoing attack by persistent threat group

The threat group behind the attacks is also linked to a series of recently disclosed vulnerabilities in the vendor’s firewalls and SD-WAN systems.

5 days ago

Help Net Security

Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182) - Help Net Security

A Cisco Catalyst SD-WAN Controller authentication bypass vulnerability (CVE-2026-20182) has been exploited in zero-day attacks.

5 days ago

The Register

Patch time for Cisco SD-WAN admins as vendor drops yet another make-me-admin zero-day

CISA hands feds super-tight deadline for this perfect-10, actively exploited flaw

5 days ago

CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits

CISA added CVE-2026-20182, a CVSS 10.0 Cisco Catalyst SD-WAN Controller authentication bypass flaw, to its KEV catalog.

6 days ago

Newsbreak

CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits - NewsBreak

The U.S.Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a newly disclosed vulnerability impacting Cisco Catalyst SD-WAN Controlle

6 days ago

It Security News

Cisco Catalyst SD-WAN Controller 0-Day Actively Exploited to Gain Admin Access - IT Security News

A maximum-severity zero-day vulnerability in Cisco Catalyst SD-WAN Controller is being actively exploited in the wild, allowing unauthenticated remote attackers to fully bypass authentication and seize administrative control of enterprise network infrastructure. Tracked as CVE-2026-20182 with a CVSS...

6 days ago

Cybersecuritynews

Cisco Catalyst SD-WAN Controller 0-Day Actively Exploited to Gain Admin Access

6 days ago

Newsbreak

Frequently asked questions about the continued exploitation of Cisco Catalyst SD-WAN vulnerabilities (CVE-2026-20182) - NewsBreak

The post Frequently asked questions about the continued exploitation of Cisco Catalyst SD-WAN vulnerabilities (CVE-2026-20182) appeared first on Tenable Bl

6 days ago

Securityweek

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026

Cisco has patched yet another critical SD-WAN zero-day vulnerability, the sixth SD-WAN flaw whose exploitation came to light in 2026.

6 days ago

Swapupdate

Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access

Ravie LakshmananMay 14, 2026Vulnerability / Network Security

6 days ago

Dark Reading

Maximum Severity Cisco SD-WAN Bug Exploited in the Wild

This is the second time this year a threat actor has leveraged a CVSS 10.0 vulnerability in Cisco's network control system.

6 days ago

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

Cisco is warning that a critical Catalyst SD-WAN Controller authentication bypass flaw, tracked as CVE-2026-20182, was actively exploited in zero-day attacks that allowed attackers to gain administrative privileges on compromised devices.

6 days ago

It Security News

U.S. CISA adds a flaw in Cisco Catalyst SD-WAN to its Known Exploited Vulnerabilities catalog - IT Security News

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Cisco Catalyst SD-WAN to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a flaw in Cisco Catalyst SD-WAN, tracked as CVE-2026-20182 (CVSS score of…Read ...

6 days ago

Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access

CVE-2026-20182 bypasses Cisco SD-WAN auth via DTLS port 12346, enabling admin access after May 2026 exploitation.

6 days ago

CVE-2026-20133 CVE-2026-21876

CVE-2026-20188

New Cisco DoS flaw requires manual reboot to revive devices

Cisco patched a Crosswork Network Controller and Network Services Orchestrator denial-of-service vulnerability that requires manually rebooting targeted systems for recovery.

2 weeks ago

Help Net Security

Week in review: Claude Mythos finds 271 Firefox flaws, Vercel breach - Help Net Security

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: SmokedMeat: Open-source tool shows what attackers do

4 weeks ago

CVE-2025-20333

FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches

FIRESTARTER backdoor hit Cisco ASA in Sept 2025, persists after patching CVE-2025-20333, risking continued federal network access.

4 weeks ago

CVE-2026-20133

CISA flags new SD-WAN flaw as actively exploited in attacks

CISA has given U.S. government agencies four days to secure their systems against another Catalyst SD-WAN Manager vulnerability it flagged as actively exploited in attacks.

1 month ago

CVE-2026-20147 CVE-2026-20180

Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution

Cisco patches four CVEs up to CVSS 9.9 in ISE and Webex, preventing code execution and user impersonation risks.

Cisco finally fixes AsyncOS zero-day exploited since November

Cisco finally patched a maximum-severity AsyncOS zero-day exploited in attacks targeting Secure Email Gateway (SEG) appliances since November 2025.

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

Cisco released fixes for CVE-2025-20393, a CVSS 10.0 zero-day RCE flaw in AsyncOS exploited by a China-linked APT via email security appliances.

CVE-2025-20337

Cisco warns of Identity Service Engine flaw with exploit code

Cisco has patched an ISE vulnerability with public proof-of-concept exploit code that can be abused by attackers with admin privileges.

ts2.tech

Cisco Systems (CSCO) News on Dec. 25, 2025: AI Networking Tailwinds, FY2026 Forecasts, and a Critical Email-Security Zero-Day

Cisco Systems (CSCO) News on Dec. 25, 2025: AI Networking Tailwinds, FY2026 Forecasts, and a Critical Email-Security Zero-Day - TechStock²

ts2.tech