Cisco Catalyst SD-WAN Manager Vulnerabilities

Plan PatchCVSS 8.6cisco-sa-sdwan-mltvnps2-JxpWm7RMay 14, 2026

Cisco

IT in OT - Cisco networking products are commonly deployed in OT environments

Attack path

Attack VectorNetwork

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

Multiple vulnerabilities in Cisco Catalyst SD-WAN Manager (formerly SD-WAN vManage, all versions) could allow a remote attacker without authentication to gain unauthorized access to sensitive information, escalate privileges, or access the application. These vulnerabilities require only network access and no user interaction. The issues affect the core SD-WAN management platform used to control and orchestrate SD-WAN deployments across enterprise networks.

What this means

What could happen

An attacker could access sensitive information or gain unauthorized administrative control of your SD-WAN Manager, potentially allowing them to redirect network traffic, alter network policies, or monitor communications across your entire SD-WAN infrastructure.

Who's at risk

This affects organizations using Cisco Catalyst SD-WAN Manager to control and monitor SD-WAN deployments. Primary concern is for IT/network teams managing wide-area network infrastructure, as an attacker could hijack network policies and routing decisions across multiple sites and branch locations.

How it could be exploited

An attacker on the network can send a specially crafted request to the Catalyst SD-WAN Manager without authentication to exploit information disclosure or privilege escalation vulnerabilities. This gives them access to sensitive data or administrative functions without needing valid credentials.

Prerequisites

Network access to the Catalyst SD-WAN Manager (typically port 443 or management interface)
No authentication required

remotely exploitableno authentication requiredlow complexityaffects network management

Exploitability

Unlikely to be exploited — EPSS score 0.0%

Affected products (1)

ProductAffected VersionsFix Status

Catalyst SD-WAN ManagerAll versionsFix available

Remediation & Mitigation

0/1

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpgrade Catalyst SD-WAN Manager to the patched version provided by Cisco

CVEs (3)

CVE-2026-20209 CVE-2026-20210 CVE-2026-20224

View full vendor advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/6e677f4b-12f8-434a-a85c-a589669ccf5d

Get OT security insights every Tuesday

Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.