CERTFR-2026-ALE-002 — Vulnetix

Try Vulnetix Request Demo

CERTFR-2026-ALE-002 PUBLISHED CVSS 7.800000190734863 HIGH

Une vulnérabilité a été découverte dans Cisco Catalyst SD-WAN. Elle permet à un attaquant de provoquer un contournement de la politique de sécurité. Cisco indique que la vulnérabilité CVE-2026-20127 est activement exploitée.

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Cisco	Cisco Catalyst SD-WAN Manager	20.3.814, 20.6.2.2, 20.3.4.2.1
Cisco	Cisco SD-WAN vEdge Cloud	20.6.8, 20.6.7, 20.6.6
Cisco	Cisco Catalyst SD-WAN	20.3.3, 19.2.1, 17.2.4
Cisco	Cisco SD-WAN vEdge Router	20.6.8, 20.4.1, 19.2.4
Cisco	Cisco SD-WAN vContainer	20.3.1, 19.2.3, 18.3.3

Timeline

Sep 28, 2022 CVE Published
Feb 25, 2026 PoC Published
Feb 25, 2026 PoC Published
Feb 25, 2026 PoC Published
Feb 25, 2026 PoC Published
Feb 25, 2026 PoC Published
Feb 26, 2026 PoC Published
Feb 26, 2026 PoC Published
Feb 26, 2026 PoC Published
Feb 26, 2026 PoC Published
Feb 26, 2026 PoC Published
Feb 26, 2026 PoC Published

References

Open in Interactive Console →