CVE-2026-20133

CVSS v2.0

7.8

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Cisco Catalyst SD-WAN Manager (affected versions not specified)

Description A flaw exists in Cisco Catalyst SD-WAN Manager that may allow a remote, unauthenticated attacker to view sensitive information. This is caused by inadequate file system access restrictions. An attacker can exploit this issue by accessing the API of an affected system. A successful exploit could allow the attacker to read sensitive information on the underlying operating system. The API is the entry point for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

BDU:2026-02322

CVE-2026-20133

Affected Products

Cisco Catalyst Sd-Wan Manager

CVE-2026-20133

Weakness Enumeration

Related Identifiers

Affected Products

References · 4