CVE-2026-20122MEDIUM 5.4CISA KEVEPSS p92.5%

CVE-2026-20122Cisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability

Cisco / Catalyst SD-WAN Manger

Description

Cisco Catalyst SD-WAN Manager contains an incorrect use of privileged APIs vulnerability due to improper file handling on the API interface of an affected system. An attacker could exploit this vulnerability by uploading a malicious file on the local file system. A successful exploit could allow the attacker to overwrite arbitrary files on the affected system and gain vmanage user privileges.

Scoring

CVSS 3.15.4 (MEDIUM)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
EPSS6.13% probability of exploitation · percentile 92.5% · 2026-06-19T12:03:05Z
Published2026-02-25
Last modified2026-04-21

CISA KEV entry

Added to KEV: 2026-04-20

Underlying weaknesses· 1

CWE-648

References

  1. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-authbp-qwCX8D4v
  2. https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-20122

1

TypeTargetConfidenceTier
WeaknessIncorrect Use of Privileged APIscwe-6480%live

(incoming)1

TypeTargetConfidenceTier
KEVEntryCisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerabilitykev-cve-2026-201220%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability
CVE
CVE-2026-20129
CVE
Cisco Catalyst SD-WAN Manager Storing Passwords in a Recoverable Format Vulnerability
CVE
CVE-2026-20127
CVE
CVE-2026-20224
CVE
Cisco Catalyst SD-WAN Manager Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.