CVE-2026-20209
Analyzed
Analyzed - Analysis Complete
BaseFortify
Vulnerability report for CVE-2026-20209, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-05-14
Last updated on: 2026-06-29
Assigner: Cisco Systems, Inc.
Description
Description
A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to elevate their privileges from low to high and perform actions as a high-privileged user.
This vulnerability exists because sensitive session information is recorded in audit logs. An attacker could exploit this vulnerability by elevating their read-only permissions in Cisco Catalyst SD-WAN Manager to those of a high-privileged user. A successful exploit could allow the attacker to perform actions as a high-privileged user.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| cisco | catalyst_sd-wan_manager | to 20.9.9.1 (exc) |
| cisco | catalyst_sd-wan_manager | From 20.12.6 (inc) to 20.12.6.2 (exc) |
| cisco | catalyst_sd-wan_manager | From 20.13 (inc) to 20.15.4.4 (exc) |
| cisco | catalyst_sd-wan_manager | From 20.15.5 (inc) to 20.15.5.2 (exc) |
| cisco | catalyst_sd-wan_manager | From 20.16 (inc) to 20.18.2.2 (exc) |
| cisco | catalyst_sd-wan_manager | From 26.1 (inc) to 26.1.1.1 (exc) |
| cisco | catalyst_sd-wan_manager | 20.12.7 |
| cisco | catalyst_sd-wan_manager | From 20.10 (inc) to 20.12.5.4 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-779 | The product logs too much information, making log files hard to process and possibly hindering recovery efforts or forensic analysis after an attack. |
