Home / Vulnerability Intelligence / CVE-2026-20127

CVE-2026-20127 - Vulnerability Analysis

CriticalCVSS: 10.0

Last Updated: February 26, 2026

Cisco Catalyst SD-WAN Controller & Manager - Authentication Bypass

Published: February 25, 2026Updated: February 26, 2026KEVPoC AvailableRemote Exploitable

Overview

Cisco Catalyst SD-WAN Controller and Manager contain an authentication bypass caused by improper peering authentication, letting unauthenticated remote attackers obtain administrative privileges, exploit requires sending crafted requests.

Severity & Score

Severity: Critical

CVSS Score: 10.0

EPSS Score: 3965.9%(Probability of exploitation in next 30 days)

Impact

Unauthenticated attackers can gain administrative access and manipulate network configurations, risking full control over the SD-WAN fabric.

Mitigation

Update to the latest available version that fixes the peering authentication mechanism.

References

Social Media Activity(2 posts)

Metasploit

@metasploit

Apr 10, 2026

This week's release features a 2x faster msfvenom bootup time and new modules, including exploits for the Cisco Catalyst SD-WAN Controller Authentication Bypass (CVE-2026-20127) and osTicket Arbitrary File Read (CVE-2026-22200). https://www.rapid7.com/blog/post/pt-metasploit-wrap-up-04-10-2026/

View original post

Metasploit

@metasploit

Apr 10, 2026

View original post

GitHub Repositories(6 repos)

Related Resources

Details

CVE ID: CVE-2026-20127
Severity: Critical
CVSS Score: 10.0
Type: broken_authentication
Status: confirmed
EPSS: 3965.9%
Social Posts: 2

CWE

CWE-287

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

EPSS Score

3965.9%Probability of exploitation in the next 30 days