Breaking News – Cyber Threats (last 6h)
Generated: 2026-02-26 02:00 PST
- Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access
The Hacker News • 2026-02-25 22:13 • thehackernews.com
A newly disclosed maximum-severity security flaw in Cisco Catalyst SD-WAN Controller (formerly vSmart) and Catalyst SD-WAN Manager (formerly vManage) has come under active exploitation in the wild as part of malicious activity that dates back to 2023.
The vulnerability, tracked as CVE-2026-20127 (CVSS score: 10.0), allows an unauthenticated remote attacker to bypass authentication and obtain
https://thehackernews.com/2026/02/cisco-sd-wan-zero-day-cve-2026-20127.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
