🔴 Critical | Source: The Register — Security
Cisco is facing a double blow: CVE-2026-20230 is being actively exploited in the wild, whilst a previously disclosed SD-WAN zero-day vulnerability has been reassessed as significantly more severe than initially reported. Both issues affect widely deployed Cisco infrastructure, raising the risk level for organisations relying on Cisco networking products.
Security Architect’s Take: Prioritise patching CVE-2026-20230 immediately given confirmed active exploitation, and reassess your risk posture for any Cisco SD-WAN deployments in light of the upgraded severity — check Cisco’s advisories for revised CVSS scores and apply available mitigations or patches before exposure windows widen.
Original advisory: The hits keep on coming for Cisco vulnerabilities