Cisco has disclosed a command injection vulnerability in Catalyst SD-WAN Manager that permits authenticated local attackers to execute arbitrary commands with root privileges through a malicious file upload. This affects the formerly-named SD-WAN vManage product. Organizations should apply vendor patches or implement workarounds by the June 2026 deadline.

Why it matters in Western Canada: Western Canadian energy, finance, and large public sector organizations frequently deploy SD-WAN solutions for network optimization. Exploitation could provide attackers direct access to critical network infrastructure and sensitive systems.

CVEs: CVE-2026-20245

---

Summary generated from the original advisory. Read the full source: cisa-kev