Cisco has disclosed a critical zero-day vulnerability in its Catalyst SD-WAN Controller (formerly vSmart) and Catalyst SD-WAN Manager (formerly vManage), actively exploited by sophisticated threat actors since at least 2023 to bypass authentication and seize root-level control. Vulnerability Overview Tracked as CVE-2026-20127 (Advisory ID: cisco-sa-sdwan-rpa-EHchtZk), this flaw stems from improper peering authentication (CWE-287). An unauthenticated […] The post Cisco SD-WAN Zero-Day Under Active Exploitation Grants Attackers Root-Level Control appeared first on Cyber Security News.