TechOptima Ignite
TechOptima Solutions (636) 777-7702

Another Cisco SD-WAN 0-Day

June 9, 2026

Yet another unpatched Cisco Catalyst SD-WAN Manager flaw is being actively exploited.

Cisco once again faces an actively exploited unpatched 0-day in its Catalyst SD-WAN Manager. Bleeping Computer noted the familiar pattern of changing only the date and CVE numbers. Recent CVEs include CVE-2026-20182 (authentication bypass for administrative privileges), CVE-2026-20133 (information disclosure), CVE-2026-20128, CVE-2026-20122, and CVE-2026-20127 (another critical authentication bypass exploited since at least 2023).

CISA has tagged 90 Cisco vulnerabilities as abused in the wild over the last several years, including four in the SD-WAN Manager and others used by ransomware groups. Cisco has not yet released patches for the newest issue and is advising customers to upgrade to versions fixed for the previous flaw.

In April Cisco claimed it had begun stress-testing its products with advanced AI tools, including Anthropic’s unreleased Claude Mythos Preview. Steve expresses skepticism, recalling past discoveries such as hardcoded credentials in Cisco firmware, and questions whether the company culture has truly changed.

Tags: CISCO | SECURITY

Source: sn-1082-notes.pdf

← Back to Blog