CISA KEV: Cisco Catalyst SD-WAN Manger — Cisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability

Monday, April 20, 2026 at 12:00 AM UTC·Source: CISA KEV

Updated: Thursday, April 30, 2026 at 05:46 PM UTC

Executive Summary

Cisco Catalyst SD-WAN Manager contains an incorrect use of privileged APIs vulnerability due to improper file handling on the API interface of an affected system. An attacker could exploit this vulnerability by uploading a malicious file on the local file system. A successful exploit could allow the attacker to overwrite arbitrary files on the affected system and gain vmanage user privileges.

Analysis

Indicators of Compromise (1)

CVE (1)

CVE-2026-20122

NVD MITRE CVE

Source Attribution

Originally published by CISA KEV on Apr 20, 2026. Verified by: CISA.

Related Threats

MEDIUMVulnerabilityNEW

CaixaBank launches a carbon credit trading platform to help clients offset their emissions

CaixaBank CIB has launched a carbon credit trading platform, a tool designed to make it easier for corporate clients and businesses to voluntarily offset CO2 emissions.

50m agoFinextra

MEDIUMVulnerability

Cyber Resilience is the New Business Continuity Plan

The organizations best prepared to face disruption are those that align security, continuity and risk management around what the business cannot afford to lose. The post Cyber Resilience is the New Business Continuity Plan appeared first on SecurityWeek .

1h agoSecurityWeek

MEDIUMVulnerability

Microsoft confirms patching issues in restricted Windows networks

Microsoft says customers in restricted network environments may encounter Windows Update failures after installing the January 2026 optional non-security preview updates. [...]

1h agoBleepingComputer