CVE-2026-20224HIGH 8.6EPSS p41.5%

CVE-2026-20224CVE-2026-20224

Description

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to read arbitrary files that are stored in an affected system. The attacker does not need to have valid user credentials. This vulnerability is due to improper handling of XML External Entity (XXE) entries when parsing an XML file. An attacker could exploit this vulnerability by sending a crafted request to an affected system. A successful exploit could allow the attacker to read arbitrary files that are stored in the affected system.

Scoring

CVSS 3.18.6 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
EPSS0.55% probability of exploitation · percentile 41.5% · 2026-06-19T12:03:05Z
Published2026-05-14
Last modified2026-05-14

Underlying weaknesses· 1

CWE-20

References

  1. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-mltvnps2-JxpWm7R
  2. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-rpa-EHchtZk

1

TypeTargetConfidenceTier
WeaknessImproper Input Validationcwe-200%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Cisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability
CVE
Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability
CVE
Cisco Catalyst SD-WAN Manager Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
CVE
CVE-2026-20129
CVE
CVE-2026-20127
CVE
Cisco Catalyst SD-WAN Manager Storing Passwords in a Recoverable Format Vulnerability
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.