Cybersecurity agencies across the Five Eyes alliance have issued an emergency directive warning that a critical Cisco SD-WAN vulnerability is being actively exploited to gain unauthorized access to federal networks. Officials confirmed that threat actors are targeting core SD-WAN control systems —infrastructure that manages traffic across government and enterprise networks — and urged organizations to patch affected devices immediately. Cisco’s Talos threat intelligence group disclosed that attackers have been exploiting a previously unknown vulnerability affecting Cisco Catalyst SD-WAN controllers, tracked as CVE-2026-20127. The flaw allows an unauthenticated attacker to bypass authenticati...