CTO at NCSC Summary: week ending March 1st
Agencies strongly encourage immediate investigation of potential compromise of Cisco Catalyst SD-WAN, and full updating and hardening.
Read the full articleYou might also wanna read
Sophisticated threat campaign pushes Cisco to the very edge
A monthslong exploitation wave against Cisco SD-WAN systems raises larger questions about trust and the insecurity of network infrastructure
Cisco SD-WAN Manager 0-day vulnerability (CVE-2026-20245) actively exploited, no patch available
A 0-day privilege escalation vulnerability (CVE-2026-20245) in Cisco Catalyst SD-WAN Manager is being leveraged by attackers.
Attackers Exploited Cisco SD-WAN Critical Flaw Two Months Before Disclosure
Researchers believe rogue peering was used to connect to the victim's SD-WAN devices to gain admin privileges and root-level access.
Cisco SD-WAN Manager zero-day (CVE-2026-20245) actively exploited with no patch available
Good luck, sys admins
Cisco SD-WAN Zero-Day CVE-2026-20245: Root-Level Command Injection Exploited Two Months Before Disclosure
Cisco SD-WAN Zero-Day CVE-2026-20245: The Root-Level Backdoor That Lurked for Two Months + Video - "Undercode Testing": Monitor hackers like
undercodetesting.com·14d agoActive root-level attacks target Cisco Catalyst SD-WAN Manager and cPanel LiteSpeed plugin
Attackers are targeting Cisco Catalyst SD-WAN Manager and cPanel instances with the LiteSpeed plugin. However, attacks are not straightforwa

Comments
Sign in to join the conversation.
No comments yet. Be the first.