CVE-2026-20133

MEDIUM 6.5

⚠️ CISA KEV

CVSS Score

6.5

EPSS Score

1.4%

EPSS Percentile

80th

A vulnerability in Cisco Catalyst SD-WAN Software could allow an unauthenticated, remote attacker to view sensitive information on an affected system. This vulnerability is due to insufficient file system restrictions. An authenticated attacker with netadmin privileges could exploit this vulnerability by accessing the vshell of an affected system. A successful exploit could allow the attacker to read sensitive information on the underlying operating system.

CWE	CWE-200
Vendor	cisco
Product	cisco catalyst sd-wan manager
Ecosystems	Networking
Industries	NetworkingTelecommunications
Published	Feb 25, 2026
Last Updated	Apr 22, 2026

⚠️ Actively Exploited — Act Now

Get instant alerts for cisco cisco catalyst sd-wan manager

This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2026-20133.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Affected Versions

Cisco / Cisco Catalyst SD-WAN Manager

17.2.6 17.2.7 17.2.8 17.2.9 17.2.10 17.2.4 17.2.5 18.3.1.1 18.3.3.1 18.3.3 18.3.4 18.3.5 18.3.7 18.3.8 18.3.6.1 18.3.1 18.3.0 18.4.0.1 18.4.3 18.4.302 18.4.303 18.4.4 18.4.5 18.4.0 18.4.1 18.4.6 19.2.0 19.2.097 19.2.099 19.2.1 19.2.2 19.2.3 19.2.31 19.2.929 19.2.4 20.1.1.1 20.1.12 20.1.1 20.1.2 20.1.3 19.3.0 19.1.0 18.2.0 20.3.1 20.3.2 20.3.2.1 20.3.3 20.3.3.1 20.3.4 20.3.4.1 20.3.4.2 20.3.5 20.3.6 20.3.7 20.3.7.1 20.3.4.3 20.3.5.1 20.3.7.2 20.3.8 20.4.1 20.4.1.1 20.4.1.2 20.4.2 20.4.2.2 20.4.2.1 20.4.2.3 20.5.1 20.5.1.2 20.5.1.1 20.6.1 20.6.1.1 20.6.2.1 20.6.2.2 20.6.2 20.6.3 20.6.3.1 20.6.4 20.6.5 20.6.5.1 20.6.5.3 20.6.1.2 20.6.3.2 20.6.4.1 20.6.5.2 20.6.5.4 20.6.3.3 20.6.4.2 20.6.3.0.45 20.6.3.0.46 20.6.3.0.47 20.6.3.4 20.6.4.0.21 20.6.5.1.10 20.6.5.1.11 20.6.5.1.7 20.6.5.1.9 20.6.5.2.4 20.6.5.5 20.6.5.2.8 20.6.5.1.13 20.6.6 20.6.7 20.6.8 20.7.1 20.7.1.1 20.7.2 20.8.1 20.9.1 20.9.2 20.9.2.1 20.9.3 20.9.3.1 20.9.2.3 20.9.3.0.12 20.9.3.0.16 20.9.3.0.17 20.9.3.0.18 20.9.3.0.20 20.9.3.0.21 20.9.3.2 20.9.3.2_LI_Images 20.9.4 20.9.4_LI_Images 20.9.3.0.23 20.9.4.1 20.9.5 20.9.5.1 20.9.5.2 20.9.6 20.9.5.3 20.9.7 20.9.7.1 20.9.8 20.10.1 20.10.1.1 20.10.1.2 20.11.1 20.11.1.1 20.11.1.2 20.12.1 20.12.1_LI_Images 20.12.2 20.12.3 20.12.3.1 20.12.4 20.12.4.1 20.12.5 20.12.5.1 20.12.5.2 20.12.6 20.13.1 20.14.1 20.15.1 20.15.2 20.15.3 20.15.3.1 20.15.4 20.15.4.1 20.16.1 20.18.1 20.18.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

sec.cloudapps.cisco.com: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-authbp-qwCX8D4v cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-20133