CISA flags 3 exploited Cisco vulnerabilities for patching
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has listed three Cisco Catalyst SD-WAN Manager vulnerabilities as under exploit and set a deadline to fix the issue. CISA has strongly urged all organizations to prioritize timely remediation of these vulnerabilities.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three Cisco Catalyst SD-WAN Manager bugs to its Known Exploited Vulnerabilities Catalog. The vulnerabilities, CVE-2026-20128, CVE-2026-20122, and CVE-2026-20133, allow attackers to gain privileges, overwrite files, or view sensitive information on affected systems. CISA has given organizations until April 23 to address these issues. Two of the flaws, CVE-2026-20128 and CVE-2026-20122, were confirmed as actively exploited by Cisco in early March 2026. The agency has strongly urged all organizations to prioritize timely remediation of these vulnerabilities to reduce their exposure to cyberattacks. CISA's action follows recent cybersecurity developments related to Cisco SD-WAN controllers being targeted by an attack campaign.
This content was automatically generated and/or translated by AI. It may contain inaccuracies. Please refer to the original sources for verification.