The Hacker News

Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access

Cisco warns CVE-2026-20127 (CVSS 10.0) in SD-WAN is exploited since 2023 to gain admin access; CISA adds it to KEV and ...
Dark Reading

Cisco SD-WAN Zero-Day Under Exploitation for 3 Years

The maximum-severity vulnerability CVE-2026-20127 was exploited by an unknown but sophisticated threat actor who left very ...
Hoodline

Cisco SD‑WAN Hack Panic: Feds Order Emergency Patch Blitz Across Bay Area

🚨 Malicious cyber actors are targeting and compromising Cisco SD-WAN systems deployed by organizations worldwide. These actors have exploited a previously undisclosed authentication bypass ...
ExecutiveGov

CISA Orders Federal Agencies to Mitigate Critical Cisco SD-WAN Threats

The Cybersecurity and Infrastructure Security Agency has released Emergency Directive 26-03, Mitigate Vulnerabilities in Cisco SD-WAN Systems, along with Supplemental Direction ED 26-03, Hunt and ...

Emergency Cisco Critical 0Day Update—Attackers Downgrade Security

CISA warns of significant cyberattack threat targeting networks, Cisco confirms 10/10 zero-day authentication bypass vulnerability already being exploited.
ZDNet

Cisco warns on critical security vulnerabilities in SD-WAN software, so update now

Cisco is warning customers to update its networking software immediately, flagging four critical security vulnerabilities affecting SD-WAN, DNA, and the Smart Software Manager Satellite. The Cisco ...
Bleeping Computer

Cisco bugs allow creating admin accounts, executing commands as root

Cisco has fixed critical SD-WAN vManage and HyperFlex HX software security flaws that could enable remote attackers to execute commands as root or create rogue admin accounts. The company also issued ...