The Hacker News

Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access

Cisco warns CVE-2026-20127 (CVSS 10.0) in SD-WAN is exploited since 2023 to gain admin access; CISA adds it to KEV and ...
Network World

Cisco wireless controllers open to attack

Cisco this week issued a security advisory for its wireless LAN controllers, which are susceptible to seven vulnerabilities including denial of service, privilege escalation and access control list ...

Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023

Cisco is warning that a critical authentication bypass vulnerability in Cisco Catalyst SD-WAN, tracked as CVE-2026-20127, was ...

Emergency Cisco Critical 0Day Update—Attackers Downgrade Security

CISA warns of significant cyberattack threat targeting networks, Cisco confirms 10/10 zero-day authentication bypass vulnerability already being exploited.

5 Nations Alert: Critical Cisco Bug Used in Global Espionage Campaign

Hackers exploited a critical Cisco SD-WAN flaw, prompting a rare joint warning from the US, UK, Australia, Canada, and New ...
Infosecurity Magazine

Global Cyber Agencies Urge Immediate Patching of Cisco SD-WAN Zero Day

Government security agencies in the UK, US, Canada, Australia and New Zealand have urged Cisco customers to take immediate action to patch a critical zero-day bug in their SD-WAN kit that has been ...

CISA orders agencies to patch Cisco devices now under attack

The vulnerabilities, scored as critical, affect the company’s Software-Defined Wide-Area Networking (SD-WAN) systems.
Computer Weekly

Cisco Catalyst SD-WAN users targeted in series of cyber attacks

The NCSC, Cisa, and other Five Eyes agencies have warned of mass exploitation of vulnerabilities in Cisco Catalyst SD-WAN, which Cisco is attributing to an unknown threat actor called UAT-8616.

Cisco: Attackers have been entering networks via security gap for three years

Attackers are exploiting a critical vulnerability in Cisco Catalyst SD-WAN Controller. Cisco is also patching other products ...
CRN

Cisco Discloses High-Severity Vulnerability, Exploit Code Released

The tech giant has provided a patch for the root escalation vulnerability, which affects a number of devices that run the Cisco Integrated Management Controller. Cisco disclosed a new high-severity ...
CSOonline

Cisco fixes vulnerabilities in Integrated Management Controller

Cisco has released patches for two privilege escalation vulnerabilities in its Integrated Management Controller (IMC) that is used for out-of-band management of many of its server products, as well as ...