Tag

Sd Wan

All articles tagged with #sd wan

technology1 month ago•3 min saved

CISA orders rapid patch for Cisco SD-WAN flaws across federal networks

CISA issued an emergency directive directing federal agencies to inventory Cisco SD-WAN systems (Catalyst SD-WAN Controller and Manager), apply updates, and check for compromises after a flaw could let an unauthenticated attacker gain admin access. Agencies must patch by Feb. 27 (5 p.m.), document affected systems by Feb. 26, store logs externally, and perform forensic checks, with additional duties by March 5 (inventory/hunt) and March 12 (hardening report). The move underscores a broader push to secure edge devices as attackers increasingly target network boundaries.

via Federal News Network|

#cisa #cisco #cybersecurity

security1 month ago•3 min saved

CISA Warns of Active Cisco SD-WAN Exploitation, Orders Immediate Remediation Across Agencies

CISA and international partners issued an alert about ongoing exploitation of Cisco SD-WAN vulnerabilities (CVE-2026-20127 and CVE-2022-20775), adding the first to the KEV catalog, and mandated federal agencies under Emergency Directive 26-03 to inventory, patch, collect artifacts, and hunt for evidence of compromise, while Cisco and partner agencies publish hardening and threat-hunting guidance.

via CISA (.gov)|

#cisa #cve-2022-20775 #cve-2026-20127

technology1 month ago•6 min saved

Cisco SD-WAN auth flaw fuels years-long zero-day campaigns, urgent patch urged

Cisco warns of a critical authentication-bypass vulnerability in Catalyst SD-WAN (CVE-2026-20127) that attackers actively exploited since 2023 to log in as a high-privilege user, insert rogue peers, and potentially gain root access. Government advisories (CISA and UK NCSC) issued urgent directives; Cisco released updates but says no workaround fully mitigates the issue. Organizations should harden exposed interfaces, review logs for anomalous peering, and patch promptly.

via BleepingComputer|

#cisco #cve-2026-20127 #cybersecurity