Summary

Cisco has issued a warning about a high-severity vulnerability in its Catalyst SD-WAN Manager, identified as CVE-2026-20245, which is currently being actively exploited. The flaw has a CVSS score of 7.8, indicating significant risk, and no patch is currently available.

Key Points

• The vulnerability is tracked as CVE-2026-20245.
• It has a CVSS score of 7.8 out of 10, indicating high severity.
• The issue affects several deployment types, including On-Prem Deployment, Cisco SD-WAN Cloud-Pro, Cisco SD-WAN Cloud (Cisco Managed), and Cisco SD-WAN for Government (FedRAMP).
• Cisco has confirmed that the vulnerability is under active exploitation.
• No patch is currently available to address this security flaw.

Analysis

The active exploitation of CVE-2026-20245 in Cisco's Catalyst SD-WAN Manager represents a significant threat to organizations using this technology. The high CVSS score underscores the potential impact of this vulnerability, which could lead to unauthorized access or control over affected systems. The lack of an available patch increases the urgency for IT teams to implement alternative mitigation strategies.

Conclusion

IT professionals should prioritize monitoring for any unusual activity in systems using Cisco Catalyst SD-WAN Manager and apply any recommended mitigations from Cisco. It is crucial to stay informed about updates from Cisco regarding a patch release for CVE-2026-20245.