THREAT OPS › Threat News › Cisco Catalyst SD-WAN Controller, Catalyst SD-WAN Manager, and Catalyst SD-WAN Validator Authenticated Privilege Escalation Vulnerability
Cisco Catalyst SD-WAN Controller, Catalyst SD-WAN Manager, and Catalyst SD-WAN Validator Authenticated Privilege Escalation Vulnerability
<p>A vulnerability in the CLI of Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, and <span class="s1">Cisco Catalyst SD-WAN Validator</span>, formerly<span class="s1"> SD-WAN vBond,</span> could allow an authenticated, local attacker to execute arbitrary commands as <em>root</em> by supplying a crafted file to the affected system.</
MITRE ATT&CK techniques
- CredentialsT1589.001
Indicators of compromise
- CVE-2026-20182cve
- CVE-2026-20127cve
- CVE-2026-20245cve
- https://www.cisco.com/c/en/us/support/docs/routers/sd-wan/225842-remediate-catalyst-sd-wan-security.htmlurl