CVE-2026-20129
Received Received - Intake
Authentication Bypass in Cisco Catalyst SD-WAN API Enables Privilege Escalation

Publication date: 2026-02-25

Last updated on: 2026-03-04

Assigner: Cisco Systems, Inc.

Description
A vulnerability in the API user authentication of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain access to an affected system as a user who has the netadmin role. The vulnerability is due to improper authentication for requests that are sent to the API. An attacker could exploit this vulnerability by sending a crafted request to the API of an affected system. A successful exploit could allow the attacker to execute commands with the privileges of the netadmin role. Note: Cisco Catalyst SD-WAN Manager releases 20.18 and later are not affected by this vulnerability. 
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-25
Last Modified
2026-03-04
Generated
2026-06-16
AI Q&A
2026-02-25
EPSS Evaluated
2026-06-15
NVD
CVE-2026-20129
EUVD
EUVD-2026-8677
Affected Vendors & Products
Showing 5 associated CPEs
Vendor Product Version / Range
cisco catalyst_sd-wan_manager to 20.9.8.2 (exc)
cisco catalyst_sd-wan_manager From 20.11 (inc) to 20.12.5.3 (exc)
cisco catalyst_sd-wan_manager From 20.13 (inc) to 20.15.4.2 (exc)
cisco catalyst_sd-wan_manager 20.12.6
cisco catalyst_sd-wan_manager From 20.16 (inc) to 20.18 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-287 When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the API user authentication of Cisco Catalyst SD-WAN Manager. It allows an unauthenticated, remote attacker to gain access to the system as a user with the netadmin role.

The issue is caused by improper authentication for requests sent to the API. An attacker can exploit this by sending a specially crafted request to the API, which could result in executing commands with netadmin privileges.

Cisco Catalyst SD-WAN Manager versions 20.18 and later are not affected by this vulnerability.

Impact Analysis

If exploited, this vulnerability could allow an attacker to gain unauthorized access to the system with netadmin privileges.

This means the attacker could execute commands with high-level administrative rights, potentially leading to full control over the affected system.

Such access could compromise the confidentiality, integrity, and availability of the system and its data.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

To mitigate this vulnerability, ensure that your Cisco Catalyst SD-WAN Manager is updated to release 20.18 or later, as these versions are not affected by this issue.

Additionally, restrict access to the API to trusted users and networks to reduce the risk of exploitation.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-20129. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart