THREATOPS
THREAT OPSCVEs › CVE-2026-20245

CVE-2026-20245 — Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability

CISA KEVExploited: confirmedCisco

Cisco Catalyst SD-WAN Manager formerly SD-WAN vManage contains an improper encoding or escaping of output vulnerability. This vulnerability could allow an authenticated, local attacker to execute arbitrary commands as root by supplying a crafted file to the affected system.

Vulnerability details

Exploiting threat actors

Related reporting