Vulnerabilities

CVE-2026-20129 - Cisco Catayst SD-WAN Authentication Bypass Vulnerability

2026-02-25 0 views admin

CVE ID : CVE-2026-20129 Published : Feb. 25, 2026, 5:25 p.m. | 1 hour, 28 minutes ago Description : A vulnerability in the API user authentication of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain access to an affected system as a user who has the netadmin role. The vulnerability is due to improper authentication for requests that are sent to the API. An attacker could exploit this vulnerability by sending a crafted request to the API of an affected system. A successful exploit could allow the attacker to execute commands with the privileges of the netadmin role. Note: Cisco Catalyst SD-WAN Manager releases 20.18 and later are not affected by this vulnerability. Severity: 9.8 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-20129

Severity

CRITICAL

Published

Feb. 25, 2026

Affected Product: Cisco

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-20129criticalcisco

CVE-2026-20129 - Cisco Catayst SD-WAN Authentication Bypass Vulnerability

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2026-20126 - Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability

CVE-2026-20127 - Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability

CVE-2026-20133 - Cisco Catalyst SD-WAN Manager Information Disclosure Vulnerability

CVE-2026-20128 - Cisco Catalyst SD-WAN Manager Information Disclosure Vulnerability

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting