CVE-2026-20209

medium

Cisco

CVSS v3 Base Score

5.4

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Confidentiality

Low

Integrity

Low

Availability

None

Published: May 14, 2026 (2 days ago)

Last Modified: May 15, 2026

Vendor: Cisco

Source: MITRE

Description

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to elevate their privileges from low to high and perform actions as a high-privileged user. This vulnerability exists because sensitive session information is recorded in audit logs. An attacker could exploit this vulnerability by elevating their read-only permissions in Cisco Catalyst SD-WAN Manager to those of a high-privileged user. A successful exploit could allow the attacker to perform actions as a high-privileged user.

CWE

CWE-779

Affected Products

Cisco Cisco Catalyst SD-WAN Manager

References

🔗 sec.cloudapps.cisco.com 🔗 sec.cloudapps.cisco.com

CVE-2026-20209

Vulnerability Report

Description

CWE

Affected Products

References