Cisco Warns of More Catalyst SD-WAN Flaws Exploited in the Wild
Summary
Cisco has issued a warning about ongoing exploitation of additional vulnerabilities in its Catalyst SD-WAN products. Two new flaws, CVE-2026-20128 and CVE-2026-20122, have been added to the list of actively exploited issues.
IFF Assessment
FOE
The discovery and active exploitation of new vulnerabilities in widely used networking equipment represent a direct threat to organizations' security.
Severity
7.5
High
Defender Context
This alert signifies that attackers are actively targeting Cisco Catalyst SD-WAN devices, potentially leading to unauthorized access or control. Defenders should prioritize patching these newly disclosed vulnerabilities and monitor their networks for any suspicious activity related to SD-WAN infrastructure.