Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks
BleepingComputer
14 May 2026
SEV 8/10
vulnerability
iot_ot_security
Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks Home News Security Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks Lawrence Abrams May 14, 2026 04:09 PM Cisco is warning that a critical Catalyst SD-WAN Controller authentication bypass flaw, tracked as CVE-2026-20182, was actively exploited in zero-day attacks that allowed attackers to gain administrative privileges on compromised devices. CVE-2026-20182 has a maximum severity of 10.0 and impacts Cisco Catalyst SD-WAN Controller and Cisco Catalyst SD-WAN Manager in on-prem and SD-WAN Cloud deployments. In an advisory published today, Cisco said the issue stems from a peering authentication mechanism that "is not working properly." "This vulnerability exists because the peering authentication mechanism in an affected system is not working properly.