Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Cisco security patch release for CVE-2026-20262

Security Patch Release
First reported
Last updated
Happening score
H score 46
1 unique sources, 1 articles

Summary

Hide ▲

Cisco released security updates for CVE-2026-20262 in Catalyst SD-WAN Manager, covering multiple release trains after the zero-day was exploited to reach root privileges. The fixed-build map spans 20.9, 20.12, 20.15, 20.18, and 26.1 trains, and the issue affects on-prem and cloud-managed deployments. Administrators were told to upgrade and review logs for index.jsp and .war upload attempts.

Related Happenings

Cisco Unified Communications Manager security update for CVE-2026-20230

Security Patch Release
H score56 First: 04.06.2026 14:09 Last: 04.06.2026 14:09 Sources 1

About this happening: Cisco released **security updates** for **Cisco Unified Communications Manager (Unified CM)** to fix **CVE-2026-20230**, a **critical** flaw that could let a remote attacker reach...

Open Happening

Cisco Secure Workload REST API patch release (CVE-2026-20223)

Security Patch Release
H score55 First: 22.05.2026 08:36 Last: 22.05.2026 08:36 Sources 1

About this happening: Cisco patched **CVE-2026-20223**, a **CVSS 10.0** Secure Workload REST API flaw that could expose sensitive data and allow configuration changes across tenant boundaries. The upda...

Open Happening

Cisco security patch release for CVE-2026-20182

Security Patch Release
H score60 First: 14.05.2026 20:45 Last: 14.05.2026 20:45 Sources 1

About this happening: Cisco released **updates** for **CVE-2026-20182**, a **maximum-severity authentication bypass** in **Catalyst SD-WAN Controller/Manager**, after the flaw was **exploited in limite...

Open Happening

TP-Link security patch release for CVE-2025-15517

Security Patch Release
H score43 First: 25.03.2026 13:11 Last: 25.03.2026 13:11 Sources 1

About this happening: **TP-Link** released **security updates** for its **Archer NX** router series to close a critical authentication-bypass flaw that could let attackers upload firmware without loggi...

Open Happening

Citrix security patch release for CVE-2026-3055

Security Patch Release
H score50 First: 24.03.2026 07:59 Last: 24.03.2026 07:59 Sources 1

About this happening: Citrix's **NetScaler ADC** and **NetScaler Gateway** updates close **CVE-2026-3055** and **CVE-2026-4368**, including a flaw that could leak sensitive memory from configured appli...

Open Happening

Timeline

  1. 15.06.2026 20:12 2 articles · 1h ago

    Cisco releases security updates for CVE-2026-20262 in Catalyst SD-WAN Manager

    Mitigation Patch Update

    Cisco released security updates for Catalyst SD-WAN Manager, formerly SD-WAN vManage, to address CVE-2026-20262 after attacks exploited the flaw to escalate to root privileges. The issue affects all deployment types, including on-prem deployments, Cisco SD-WAN Cloud-Pro, Cisco SD-WAN Cloud (Cisco Managed), and Cisco SD-WAN for Government (FedRAMP), and Cisco advised upgrading to the first fixed releases 20.9.9.2, 20.12.7.2, 20.15.4.5, 20.15.5.3, 20.18.3.1, or 26.1.1.2. Cisco also shared IOCs for vmanage-server, vmanage-appserver, and serviceproxy-access logs to detect attempts to upload index.jsp and .war files.

    Show sources
    Open in new tab