CVEFinder.io

CVE-2026-20262

🔶 medium
🔍 Scan for this CVE
Summary

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker to create a file or overwrite any file on the filesystem of an affected system. This vulnerability exists because the affected software does not properly validate user-supplied input during a file upload process. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected API endpoint of the affected system. A successful explo

Description

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker to create a file or overwrite any file on the filesystem of an affected system.

This vulnerability exists because the affected software does not properly validate user-supplied input during a file upload process. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected API endpoint of the affected system. A successful exploit could allow the attacker to create or overwrite any file on the underlying operating system. This file could later be used to elevate to root. To exploit this vulnerability, the attacker must have valid credentials with at least a lower-privileged, single-task user account.

CVSS Score
6.5
Medium
EPSS Score
1.7
Exploit Probability
Published Date
2026-06-15
First Seen: 2026-06-16
📊 Relative Risk Intelligence

This CVE is Lower Risk - more severe than 47.8% of all 330,193 vulnerabilities in our database.

#172,448
Below average severity
Severity Percentile
🎯 CISA SSVC Assessment Updated: Jun 16, 2026
🔍 Exploitation Status
Active
Exploits detected in the wild
⚙️ Automatable
NO
Requires human interaction
💥 Technical Impact
Partial
Limited system impact
SSVC data provided by CISA
Last Modified 2026-06-16
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CWE IDs (Weakness Types)
CWE-22

📦 Affected Products 6

Vendor Product Status Affected Versions
cisco catalyst_sd-wan_manager Affected
> 20.10 < 20.12.7.2
cisco catalyst_sd-wan_manager Affected
> 20.13 < 20.15.4.5
cisco catalyst_sd-wan_manager Affected
> 20.15.5 < 20.15.5.3
cisco catalyst_sd-wan_manager Affected
> 20.16 < 20.18.3.1
cisco catalyst_sd-wan_manager Affected
< 20.9.9.2
cisco catalyst_sd-wan_manager Affected
> 26.1 < 26.1.1.2

🔗 References 2

https://sec.cloudapps.cisco.com/security/center/cont...
Vendor Advisory
https://www.cisa.gov/known-exploited-vulnerabilities...
US Government Resource

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-20245 ⚠️ high 7.8 1.0 A vulnerability in the CLI of Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, Cisco Catalyst SD-WAN Manager, f... 2026-06-04
CVE-2026-20182 ⛔ critical 10.0 77.9 May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and fi... 2026-05-14
CVE-2026-20122 🔶 medium 5.4 1.1 A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to overwrite a... 2026-02-25
CVE-2026-20126 ⚠️ high 8.8 0.0 A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with low privileges to gai... 2026-02-25
CVE-2026-20127 ⛔ critical 10.0 48.2 A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, Cisco Catalys... 2026-02-25
CVE-2026-20128 ⚠️ high 7.5 0.1 A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could allow an unauthenticat... 2026-02-25
These CVEs affect the same products