CVE-2026-20210

MEDIUM EPSS 8.9%
Published May 14, 20261mo ago · Modified Jun 29, 2026today
5.4 CVSS 3.1
Medium
Find Similar
Published May 14, 2026 1mo ago
Last Modified Jun 29, 2026 today

Description

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to modify configurations and perform unauthorized actions on an affected system. This vulnerability exists because of a failure to redact sensitive information within device configurations and templates. An attacker could exploit this vulnerability by elevating their read-only permissions to those of a high-privileged user. A successful exploit could allow the attacker to access or modify configuration settings within Cisco Catalyst SD-WAN Manager as a high-privileged user.

CVSS Details

Base Score
5.4
Exploitability
2.8
Impact
2.5
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality Low
Integrity Low
Availability None

Threat Intelligence

EPSS Exploit Probability
8.9% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-779

Affected Products 8

VendorProductVersionRange
ciscocatalyst_sd-wan_manager* <20.9.9.1
ciscocatalyst_sd-wan_manager*≥20.10  –  <20.12.5.4
ciscocatalyst_sd-wan_manager*≥20.12.6  –  <20.12.6.2
ciscocatalyst_sd-wan_manager*≥20.13  –  <20.15.4.4
ciscocatalyst_sd-wan_manager*≥20.15.5  –  <20.15.5.2
ciscocatalyst_sd-wan_manager*≥20.16  –  <20.18.2.2
ciscocatalyst_sd-wan_manager*≥26.1  –  <26.1.1.1
ciscocatalyst_sd-wan_manager20.12.7any

References 2

  • sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-mltvnps2-JxpWm7R
    Vendor Advisory
  • sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-rpa-EHchtZk
    Not Applicable

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.