← Home
Cisco Catalyst SD-WAN Controller, Catalyst SD-WAN Manager, and Catalyst SD-WAN Validator Authenticated Privilege Escalation Vulnerability
Source: cisco / cisco-sa-sdwan-privesc-4uxFrdzx
— original advisory
Published: 2026-06-04
· Last updated: 2026-06-12
· Vendor severity: High
Exploited (KEV)
CVEs
| CVE | CVSS | CWE | Exploitation |
| CVE-2026-20245 |
7.8 |
CWE-116: Improper Encoding or Escaping of Output |
Exploited (KEV)
|
Affected Products
| Product | Affected versions | Fixed version |
| Cisco Catalyst SD-WAN Controller |
Not specified by vendor |
Not specified by vendor |
| Cisco Catalyst SD-WAN Manager |
Not specified by vendor |
Not specified by vendor |