CVE-2026-20182: Cisco Catalyst SD-WAN EITW

Last Updated: 2026-05-15T18:08:25Z (UTC) What’s Happening CVE-2026-20182 Authentication Bypass in Cisco Catalyst SD-WAN controller has been found exploited in the wild. It has a severity rating of 10. Rapid 7, who initially disclosed the vulnerability, has published their own in-depth analysis and timeline. Rapid7 has also released a Metasploit Module that exploits this vulnerability. Cisco has released an update and disclosed a number of IOC’s related to the ongoing exploitation. The...