CVE-2026-20127: Active Exploitation of Cisco Catalyst SD-WAN by UAT-8616 in 2026

Introduction Cisco Talos has recently identified active exploitation of CVE-2026-20127, a critical vulnerability in Cisco Catalyst SD-WAN Controller. This post dives into the technical details, detection queries, and patch steps necessary to protect ...