> TritonInfoSec News

Home / May 15, 2026 / Story

#1 BleepingComputer general May 14, 2026 at 20:09 UTC

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

By Lawrence Abrams

AI Summary

Cisco disclosed CVE-2026-20182, a CVSS 10.0 authentication bypass in the Catalyst SD-WAN Controller (formerly SD-WAN vSmart) and SD-WAN Manager, actively exploited in zero-day attacks granting administrative privileges. This is the second maximum-severity Cisco SD-WAN flaw exploited in the wild this year, making immediate patching critical for network operators running Cisco SD-WAN infrastructure.

Read full article → https://www.bleepingcomputer.com/news/security/cis…

Relevance score: 92.0/100

Sponsored

Protect Your Business

Expert cybersecurity solutions to safeguard your organization from evolving threats.

Get Protected →

# More from May 15

2
OpenAI confirms security breach in TanStack supply chain attack BleepingComputer
3
18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE The Hacker News
4
Windows 11 and Microsoft Edge hacked at Pwn2Own Berlin 2026 BleepingComputer
5
Major tech manufacturer Foxconn confirms cyberattack hit North American factories CyberScoop
6
New Fragnesia Linux flaw lets attackers gain root privileges BleepingComputer
7
Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation The Hacker News
8
Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike The Hacker News
9
Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets The Hacker News
10
Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday The Hacker News