ID:12712 - Exploit for Improper authentication in Cisco Systems, Inc products - CVE-2026-20182

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:12712 - Exploit for Improper authentication in Cisco Systems, Inc products - CVE-2026-20182

ID:12712 - Exploit for Improper authentication in Cisco Systems, Inc products - CVE-2026-20182

Published: May 15, 2026


Vulnerability identifier: #VU131450
Vulnerability risk: Critical
CVE-ID: CVE-2026-20182
CWE-ID: CWE-287
Exploitation vector: Remote access
Vulnerable software:
Catalyst SD-WAN Manager (formerly SD-WAN vManage)
Cisco SD-WAN vEdge Routers
Catalyst SD-WAN Controller (formerly SD-WAN vSmart)

Link to public exploit:


Vulnerability description

The vulnerability allows a remote attacker to bypass authentication and obtain administrative privileges.

The vulnerability exists due to improper authentication in the peering authentication mechanism when handling control connection handshaking requests. A remote attacker can send crafted requests to bypass authentication and obtain administrative privileges.

A successful exploit could allow access as an internal, high-privileged, non-root user account and subsequent access to NETCONF to manipulate SD-WAN fabric configuration.

Note, the vulnerability is being actively exploited in the wild.


Remediation

Install security update from vendor's website.