CVE-2026-20209— Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-20209
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to elevate their privileges from low to high and perform actions as a high-privileged user. This vulnerability exists because sensitive session information is recorded in audit logs. An attacker could exploit this vulnerability by elevating their read-only permissions in Cisco Catalyst SD-WAN Manager to those of a high-privileged user. A successful exploit could allow the attacker to perform actions as a high-privileged user.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
日志记录过多数据
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Cisco | Cisco Catalyst SD-WAN Manager | 20.1.12 | - |
II. Public POCs for CVE-2026-20209
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-20209
请登录查看更多情报信息。
Same Patch Batch · Cisco · 2026-05-14 · 4 CVEs total
| CVE-2026-20182 | 10.0 CRITICAL | Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability |
| CVE-2026-20224 | 8.6 HIGH | Cisco Catalyst SD-WAN Manager XML External Entity Injection Vulnerability |
| CVE-2026-20210 | 5.4 MEDIUM | Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability |
IV. Related Vulnerabilities
Same product: Cisco Catalyst SD-WAN Manager
- CVE-2026-20224
Cisco Catalyst SD-WAN Manager XML External Entity Injection - CVE-2026-20210
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerabi - CVE-2026-20182
Cisco Catalyst SD-WAN Controller Authentication Bypass Vulne - CVE-2026-20108
Cisco Catalyst SD-WAN Manager(Cisco SD-WAN vManage) 跨站脚本漏洞 - CVE-2026-20122
Cisco Catalyst SD-WAN Manager Arbitrary File Overwrite Vulne
Same vendor: Cisco
- CVE-2026-20224
Cisco Catalyst SD-WAN Manager XML External Entity Injection - CVE-2026-20210
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerabi - CVE-2026-20182
Cisco Catalyst SD-WAN Controller Authentication Bypass Vulne - CVE-2026-20219
Cisco Slido 安全漏洞 - CVE-2026-20034
Cisco Unity Connection Remote Code Execution Vulnerability
Same weakness: CWE-779
- CVE-2026-20210
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerabi - CVE-2026-28718
Acronis Cyber Protect 安全漏洞 - CVE-2025-69230
AIOHTTP Vulnerable to Cookie Parser Warning Storm - CVE-2024-36416
SuiteCRM v4 API Excessive log data DOS - CVE-2024-1141
Glance-store: glance store access key logged in debug log le
V. Comments for CVE-2026-20209
No comments yet