> TritonInfoSec News
Home / Feb 26, 2026 / Story
0
#2 BleepingComputer general February 25, 2026 at 18:01 UTC

Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023

By Lawrence Abrams

AI Summary

Cisco warns that CVE-2026-20127, a critical authentication bypass vulnerability in Catalyst SD-WAN, has been actively exploited in zero-day attacks since 2023, allowing remote attackers to compromise controllers and add malicious rogue peers. The vulnerability affects multiple Cisco edge technology products and represents part of a broader campaign targeting network infrastructure.

Read full article → https://www.bleepingcomputer.com/news/security/cri…

Relevance score: 94.0/100

# More from February 26

  1. 1
    Five Eyes allies warn hackers are actively exploiting Cisco SD-WAN flaws
  2. 3
    Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 Countries The Hacker News
  3. 4
    Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian Broker The Hacker News
  4. 5
    SolarWinds Patches Four Critical Serv-U Vulnerabilities SecurityWeek
  5. 6
    Fake Next.js job interview tests backdoor developer's devices BleepingComputer
  6. 7
    CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability The Hacker News
  7. 8
    Malicious NuGet Packages Stole ASP.NET Data; npm Package Dropped Malware The Hacker News
  8. 9
    Health insurance tech provider TriZetto says more than 3 million impacted by 2024 breach
  9. 10
    Over 12 Million Users Impacted by CarGurus Data Breach SecurityWeek