{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-20128", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2025-10-08T11:59:15.379Z", "datePublished": "2026-02-25T16:14:12.353Z", "dateUpdated": "2026-03-20T21:47:33.415Z"}, "containers": {"cna": {"title": "Cisco Catalyst SD-WAN Manager Information Disclosure Vulnerability", "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "baseScore": 7.5, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "HIGH", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}}], "descriptions": [{"lang": "en", "value": "A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain DCA user privileges on an affected system.\r\n\r\nThis vulnerability is due to the presence of a credential file for the DCA user on an affected system. An attacker could exploit this vulnerability by sending a crafted HTTP request and reading the file that contains the DCA password from that affected system. A successful exploit could allow the attacker to access another affected system and gain DCA user privileges.\r\nNote: Cisco Catalyst SD-WAN Manager releases 20.18 and later are not affected by this vulnerability."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-authbp-qwCX8D4v", "name": "cisco-sa-sdwan-authbp-qwCX8D4v"}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in CVE-2026-20133, CVE-2026-20126, and CVE-2026-20129.\r\n\r\nIn March 2026, the Cisco PSIRT became aware of active exploitation of the vulnerabilities that are described in CVE-2026-20128 and CVE-2026-20122 only. The vulnerabilities that are described in the other CVEs in this advisory are not known to have been compromised. Cisco strongly recommends that customers upgrade to a fixed software release to remediate these vulnerabilities."}], "source": {"advisory": "cisco-sa-sdwan-authbp-qwCX8D4v", "discovery": "INTERNAL", "defects": ["CSCws33585"]}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "Storing Passwords in a Recoverable Format", "type": "cwe", "cweId": "CWE-257"}]}], "affected": [{"vendor": "Cisco", "product": "Cisco Catalyst SD-WAN Manager", "versions": [{"version": "20.1.12", "status": "affected"}, {"version": "19.2.1", "status": "affected"}, {"version": "18.4.4", "status": "affected"}, {"version": "18.4.5", "status": "affected"}, {"version": "20.1.1.1", "status": "affected"}, {"version": "20.1.1", "status": "affected"}, {"version": "19.3.0", "status": "affected"}, {"version": "19.2.2", "status": "affected"}, {"version": "19.2.099", "status": "affected"}, {"version": "18.3.6", "status": "affected"}, {"version": "18.3.7", "status": "affected"}, {"version": "19.2.0", "status": "affected"}, {"version": "18.3.8", "status": "affected"}, {"version": "19.0.0", "status": "affected"}, {"version": "19.1.0", "status": "affected"}, {"version": "18.4.302", "status": "affected"}, {"version": "18.4.303", "status": "affected"}, {"version": "19.2.097", "status": "affected"}, {"version": "19.2.098", "status": "affected"}, {"version": "17.2.10", "status": "affected"}, {"version": "18.3.6.1", "status": "affected"}, {"version": "19.0.1a", "status": "affected"}, {"version": "18.2.0", "status": "affected"}, {"version": "18.4.3", "status": "affected"}, {"version": "18.4.1", "status": "affected"}, {"version": "17.2.8", "status": "affected"}, {"version": "18.3.3.1", "status": "affected"}, {"version": "18.4.0", "status": "affected"}, {"version": "18.3.1", "status": "affected"}, {"version": "17.2.6", "status": "affected"}, {"version": "17.2.9", "status": "affected"}, {"version": "18.3.4", "status": "affected"}, {"version": "17.2.5", "status": "affected"}, {"version": "18.3.1.1", "status": "affected"}, {"version": "18.3.5", "status": "affected"}, {"version": "18.4.0.1", "status": "affected"}, {"version": "18.3.3", "status": "affected"}, {"version": "17.2.7", "status": "affected"}, {"version": "18.3.0", "status": "affected"}, {"version": "19.2.3", "status": "affected"}, {"version": "18.4.501_ES", "status": "affected"}, {"version": "20.3.1", "status": "affected"}, {"version": "20.1.2", "status": "affected"}, {"version": "19.2.929", "status": "affected"}, {"version": "19.2.31", "status": "affected"}, {"version": "20.3.2", "status": "affected"}, {"version": "19.2.32", "status": "affected"}, {"version": "20.3.2.1", "status": "affected"}, {"version": "20.3.2.1_927", "status": "affected"}, {"version": "18.4.6", "status": "affected"}, {"version": "20.3.2_928", "status": "affected"}, {"version": "20.3.2_929", "status": "affected"}, {"version": "20.4.1.0.1", "status": "affected"}, {"version": "20.3.2.1_930", "status": "affected"}, {"version": "19.2.4", "status": "affected"}, {"version": "20.5.0.1.1", "status": "affected"}, {"version": "20.4.1.1", "status": "affected"}, {"version": "20.3.3", "status": "affected"}, {"version": "19.2.4.0.1", "status": "affected"}, {"version": "20.3.2_937", "status": "affected"}, {"version": "20.5.1", "status": "affected"}, {"version": "20.1.3", "status": "affected"}, {"version": "20.3.3.0.4", "status": "affected"}, {"version": "20.3.3.1.2", "status": "affected"}, {"version": "20.3.3.1.1", "status": "affected"}, {"version": "20.4.1.2", "status": "affected"}, {"version": "20.3.3.0.2", "status": "affected"}, {"version": "20.4.1.1.5", "status": "affected"}, {"version": "20.4.1.0.02", "status": "affected"}, {"version": "20.3.3.1.7", "status": "affected"}, {"version": "20.3.3.1.5", "status": "affected"}, {"version": "20.5.1.0.1", "status": "affected"}, {"version": "20.3.3.1.10", "status": "affected"}, {"version": "20.3.3.0.8", "status": "affected"}, {"version": "20.4.2", "status": "affected"}, {"version": "20.3.4", "status": "affected"}, {"version": "20.3.3.0.14", "status": "affected"}, {"version": "19.2.4.0.8", "status": "affected"}, {"version": "19.2.4.0.9", "status": "affected"}, {"version": "20.3.4.0.1", "status": "affected"}, {"version": "20.3.2.0.5", "status": "affected"}, {"version": "20.5.1.0.2", "status": "affected"}, {"version": "20.6.1.1", "status": "affected"}, {"version": "20.6.0.18.3", "status": "affected"}, {"version": "20.3.2.0.6", "status": "affected"}, {"version": "20.6.0.18.4", "status": "affected"}, {"version": "20.4.2.0.2", "status": "affected"}, {"version": "20.3.3.0.16", "status": "affected"}, {"version": "20.6.1.0.1", "status": "affected"}, {"version": "20.3.4.0.6", "status": "affected"}, {"version": "20.7.1EFT2", "status": "affected"}, {"version": "20.3.4.0.9", "status": "affected"}, {"version": "20.3.4.0.11", "status": "affected"}, {"version": "20.3.3.0.18", "status": "affected"}, {"version": "20.6.2.1", "status": "affected"}, {"version": "20.3.4.1", "status": "affected"}, {"version": "20.4.2.1", "status": "affected"}, {"version": "20.4.2.1.1", "status": "affected"}, {"version": "20.3.4.1.1", "status": "affected"}, {"version": "20.3.813", "status": "affected"}, {"version": "20.3.4.0.19", "status": "affected"}, {"version": "20.4.2.2.1", "status": "affected"}, {"version": "20.5.1.2", "status": "affected"}, {"version": "20.3.814", "status": "affected"}, {"version": "20.4.2.2", "status": "affected"}, {"version": "20.6.2.2", "status": "affected"}, {"version": "20.3.4.2.1", "status": "affected"}, {"version": "20.3.4.1.2", "status": "affected"}, {"version": "20.3.4.0.20", "status": "affected"}, {"version": "20.6.2.2.3", "status": "affected"}, {"version": "20.4.2.2.2", "status": "affected"}, {"version": "20.6.2.0.4", "status": "affected"}, {"version": "20.3.4.0.24", "status": "affected"}, {"version": "20.6.2.2.7", "status": "affected"}, {"version": "20.3.4.2.2", "status": "affected"}, {"version": "20.4.2.2.4", "status": "affected"}, {"version": "20.3.5.0.8", "status": "affected"}, {"version": "20.3.5.0.9", "status": "affected"}, {"version": "20.3.5.0.7", "status": "affected"}, {"version": "20.6.3.0.2", "status": "affected"}, {"version": "20.9.1EFT2", "status": "affected"}, {"version": "20.3.6", "status": "affected"}, {"version": "20.3.7", "status": "affected"}, {"version": "20.4.2.3", "status": "affected"}, {"version": "20.3.5.1", "status": "affected"}, {"version": "20.3.4.3", "status": "affected"}, {"version": "20.3.3.2", "status": "affected"}, {"version": "20.3.7.1", "status": "affected"}, {"version": "20.3.4.0.25", "status": "affected"}, {"version": "20.6.2.2.4", "status": "affected"}, {"version": "20.6.1.2", "status": "affected"}, {"version": "20.1.3.1", "status": "affected"}, {"version": "20.6.5.1.4", "status": "affected"}, {"version": "20.3.8", "status": "affected"}, {"version": "20.12.501", "status": "affected"}, {"version": "26.1.1", "status": "affected"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2026-03-20T21:47:33.415Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-06T05:01:16.162532Z", "id": "CVE-2026-20128", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-09T13:50:28.015Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-20128", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-06T05:01:16.162532Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-25T18:17:54.348Z"}}], "cna": {"title": "Cisco Catalyst SD-WAN Manager Information Disclosure Vulnerability", "source": {"defects": ["CSCws33585"], "advisory": "cisco-sa-sdwan-authbp-qwCX8D4v", "discovery": "INTERNAL"}, "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "Cisco", "product": "Cisco Catalyst SD-WAN Manager", "versions": [{"status": "affected", "version": "20.1.12"}, {"status": "affected", "version": "19.2.1"}, {"status": "affected", "version": "18.4.4"}, {"status": "affected", "version": "18.4.5"}, {"status": "affected", "version": "20.1.1.1"}, {"status": "affected", "version": "20.1.1"}, {"status": "affected", "version": "19.3.0"}, {"status": "affected", "version": "19.2.2"}, {"status": "affected", "version": "19.2.099"}, {"status": "affected", "version": "18.3.6"}, {"status": "affected", "version": "18.3.7"}, {"status": "affected", "version": "19.2.0"}, {"status": "affected", "version": "18.3.8"}, {"status": "affected", "version": "19.0.0"}, {"status": "affected", "version": "19.1.0"}, {"status": "affected", "version": "18.4.302"}, {"status": "affected", "version": "18.4.303"}, {"status": "affected", "version": "19.2.097"}, {"status": "affected", "version": "19.2.098"}, {"status": "affected", "version": "17.2.10"}, {"status": "affected", "version": "18.3.6.1"}, {"status": "affected", "version": "19.0.1a"}, {"status": "affected", "version": "18.2.0"}, {"status": "affected", "version": "18.4.3"}, {"status": "affected", "version": "18.4.1"}, {"status": "affected", "version": "17.2.8"}, {"status": "affected", "version": "18.3.3.1"}, {"status": "affected", "version": "18.4.0"}, {"status": "affected", "version": "18.3.1"}, {"status": "affected", "version": "17.2.6"}, {"status": "affected", "version": "17.2.9"}, {"status": "affected", "version": "18.3.4"}, {"status": "affected", "version": "17.2.5"}, {"status": "affected", "version": "18.3.1.1"}, {"status": "affected", "version": "18.3.5"}, {"status": "affected", "version": "18.4.0.1"}, {"status": "affected", "version": "18.3.3"}, {"status": "affected", "version": "17.2.7"}, {"status": "affected", "version": "18.3.0"}, {"status": "affected", "version": "19.2.3"}, {"status": "affected", "version": "18.4.501_ES"}, {"status": "affected", "version": "20.3.1"}, {"status": "affected", "version": "20.1.2"}, {"status": "affected", "version": "19.2.929"}, {"status": "affected", "version": "19.2.31"}, {"status": "affected", "version": "20.3.2"}, {"status": "affected", "version": "19.2.32"}, {"status": "affected", "version": "20.3.2.1"}, {"status": "affected", "version": "20.3.2.1_927"}, {"status": "affected", "version": "18.4.6"}, {"status": "affected", "version": "20.3.2_928"}, {"status": "affected", "version": "20.3.2_929"}, {"status": "affected", "version": "20.4.1.0.1"}, {"status": "affected", "version": "20.3.2.1_930"}, {"status": "affected", "version": "19.2.4"}, {"status": "affected", "version": "20.5.0.1.1"}, {"status": "affected", "version": "20.4.1.1"}, {"status": "affected", "version": "20.3.3"}, {"status": "affected", "version": "19.2.4.0.1"}, {"status": "affected", "version": "20.3.2_937"}, {"status": "affected", "version": "20.5.1"}, {"status": "affected", "version": "20.1.3"}, {"status": "affected", "version": "20.3.3.0.4"}, {"status": "affected", "version": "20.3.3.1.2"}, {"status": "affected", "version": "20.3.3.1.1"}, {"status": "affected", "version": "20.4.1.2"}, {"status": "affected", "version": "20.3.3.0.2"}, {"status": "affected", "version": "20.4.1.1.5"}, {"status": "affected", "version": "20.4.1.0.02"}, {"status": "affected", "version": "20.3.3.1.7"}, {"status": "affected", "version": "20.3.3.1.5"}, {"status": "affected", "version": "20.5.1.0.1"}, {"status": "affected", "version": "20.3.3.1.10"}, {"status": "affected", "version": "20.3.3.0.8"}, {"status": "affected", "version": "20.4.2"}, {"status": "affected", "version": "20.3.4"}, {"status": "affected", "version": "20.3.3.0.14"}, {"status": "affected", "version": "19.2.4.0.8"}, {"status": "affected", "version": "19.2.4.0.9"}, {"status": "affected", "version": "20.3.4.0.1"}, {"status": "affected", "version": "20.3.2.0.5"}, {"status": "affected", "version": "20.5.1.0.2"}, {"status": "affected", "version": "20.6.1.1"}, {"status": "affected", "version": "20.6.0.18.3"}, {"status": "affected", "version": "20.3.2.0.6"}, {"status": "affected", "version": "20.6.0.18.4"}, {"status": "affected", "version": "20.4.2.0.2"}, {"status": "affected", "version": "20.3.3.0.16"}, {"status": "affected", "version": "20.6.1.0.1"}, {"status": "affected", "version": "20.3.4.0.6"}, {"status": "affected", "version": "20.7.1EFT2"}, {"status": "affected", "version": "20.3.4.0.9"}, {"status": "affected", "version": "20.3.4.0.11"}, {"status": "affected", "version": "20.3.3.0.18"}, {"status": "affected", "version": "20.6.2.1"}, {"status": "affected", "version": "20.3.4.1"}, {"status": "affected", "version": "20.4.2.1"}, {"status": "affected", "version": "20.4.2.1.1"}, {"status": "affected", "version": "20.3.4.1.1"}, {"status": "affected", "version": "20.3.813"}, {"status": "affected", "version": "20.3.4.0.19"}, {"status": "affected", "version": "20.4.2.2.1"}, {"status": "affected", "version": "20.5.1.2"}, {"status": "affected", "version": "20.3.814"}, {"status": "affected", "version": "20.4.2.2"}, {"status": "affected", "version": "20.6.2.2"}, {"status": "affected", "version": "20.3.4.2.1"}, {"status": "affected", "version": "20.3.4.1.2"}, {"status": "affected", "version": "20.3.4.0.20"}, {"status": "affected", "version": "20.6.2.2.3"}, {"status": "affected", "version": "20.4.2.2.2"}, {"status": "affected", "version": "20.6.2.0.4"}, {"status": "affected", "version": "20.3.4.0.24"}, {"status": "affected", "version": "20.6.2.2.7"}, {"status": "affected", "version": "20.3.4.2.2"}, {"status": "affected", "version": "20.4.2.2.4"}, {"status": "affected", "version": "20.3.5.0.8"}, {"status": "affected", "version": "20.3.5.0.9"}, {"status": "affected", "version": "20.3.5.0.7"}, {"status": "affected", "version": "20.6.3.0.2"}, {"status": "affected", "version": "20.9.1EFT2"}, {"status": "affected", "version": "20.3.6"}, {"status": "affected", "version": "20.3.7"}, {"status": "affected", "version": "20.4.2.3"}, {"status": "affected", "version": "20.3.5.1"}, {"status": "affected", "version": "20.3.4.3"}, {"status": "affected", "version": "20.3.3.2"}, {"status": "affected", "version": "20.3.7.1"}, {"status": "affected", "version": "20.3.4.0.25"}, {"status": "affected", "version": "20.6.2.2.4"}, {"status": "affected", "version": "20.6.1.2"}, {"status": "affected", "version": "20.1.3.1"}, {"status": "affected", "version": "20.6.5.1.4"}, {"status": "affected", "version": "20.3.8"}, {"status": "affected", "version": "20.12.501"}, {"status": "affected", "version": "26.1.1"}], "defaultStatus": "unknown"}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in CVE-2026-20133, CVE-2026-20126, and CVE-2026-20129.\r\n\r\nIn March 2026, the Cisco PSIRT became aware of active exploitation of the vulnerabilities that are described in CVE-2026-20128 and CVE-2026-20122 only. The vulnerabilities that are described in the other CVEs in this advisory are not known to have been compromised. Cisco strongly recommends that customers upgrade to a fixed software release to remediate these vulnerabilities."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-authbp-qwCX8D4v", "name": "cisco-sa-sdwan-authbp-qwCX8D4v"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain DCA user privileges on an affected system.\r\n\r\nThis vulnerability is due to the presence of a credential file for the DCA user on an affected system. An attacker could exploit this vulnerability by sending a crafted HTTP request and reading the file that contains the DCA password from that affected system. A successful exploit could allow the attacker to access another affected system and gain DCA user privileges.\r\nNote: Cisco Catalyst SD-WAN Manager releases 20.18 and later are not affected by this vulnerability."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-257", "description": "Storing Passwords in a Recoverable Format"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2026-03-20T21:47:33.415Z"}}}, "cveMetadata": {"cveId": "CVE-2026-20128", "state": "PUBLISHED", "dateUpdated": "2026-03-20T21:47:33.415Z", "dateReserved": "2025-10-08T11:59:15.379Z", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2026-02-25T16:14:12.353Z", "assignerShortName": "cisco"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "0388BD67-C1AD-4E47-8B1A-22EE1634190E", "versionEndExcluding": "20.9.8.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "344CA479-F60F-4CD6-83F7-4DB38DF2EAEB", "versionEndExcluding": "20.12.5.3", "versionStartIncluding": "20.11", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "D284EA84-6C27-4A9C-BDA2-D1C5BF1F2356", "versionEndExcluding": "20.15.4.2", "versionStartIncluding": "20.13", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "79B0897E-0FF3-44CA-901F-A10A6921672D", "versionEndExcluding": "20.18", "versionStartIncluding": "20.16", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.12.6:*:*:*:*:*:*:*", "matchCriteriaId": "F5B6E170-73B8-4838-93B4-AD258F3BCA7C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain DCA user privileges on an affected system.\r\n\r\nThis vulnerability is due to the presence of a credential file for the DCA user on an affected system. An attacker could exploit this vulnerability by sending a crafted HTTP request and reading the file that contains the DCA password from that affected system. A successful exploit could allow the attacker to access another affected system and gain DCA user privileges.\r\nNote: Cisco Catalyst SD-WAN Manager releases 20.18 and later are not affected by this vulnerability."}, {"lang": "es", "value": "Una vulnerabilidad en la funci\u00f3n de Agente de Recopilaci\u00f3n de Datos (DCA) de Cisco Catalyst SD-WAN Manager podr\u00eda permitir a un atacante local autenticado obtener privilegios de usuario de DCA en un sistema afectado. Para explotar esta vulnerabilidad, el atacante debe tener credenciales v\u00e1lidas de vmanage en el sistema afectado.\n\nEsta vulnerabilidad se debe a la presencia de un archivo de credenciales para el usuario de DCA en un sistema afectado. Un atacante podr\u00eda explotar esta vulnerabilidad al acceder al sistema de archivos como un usuario con privilegios bajos y leer el archivo que contiene la contrase\u00f1a de DCA de ese sistema afectado. Un exploit exitoso podr\u00eda permitir al atacante acceder a otro sistema afectado y obtener privilegios de usuario de DCA.\nNota: Las versiones 20.18 y posteriores de Cisco Catalyst SD-WAN Manager no se ven afectadas por esta vulnerabilidad."}], "id": "CVE-2026-20128", "lastModified": "2026-03-20T22:16:25.377", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.8, "impactScore": 6.0, "source": "psirt@cisco.com", "type": "Secondary"}]}, "published": "2026-02-25T17:25:30.150", "references": [{"source": "psirt@cisco.com", "tags": ["Vendor Advisory"], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-authbp-qwCX8D4v"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-257"}], "source": "psirt@cisco.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.1.12"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "19.2.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.4.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.4.5"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.1.1.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.1.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "19.3.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "19.2.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "19.2.099"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.3.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.3.7"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "19.2.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.3.8"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "19.0.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "19.1.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "18.4.302"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "18.4.303"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "19.2.097"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "19.2.098"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.2.10"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "18.3.6.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "19.0.1a"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.2.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.4.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.4.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.2.8"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "18.3.3.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.4.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.3.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.2.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.2.9"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "18.3.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.2.5"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "18.3.1.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.3.5"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "18.4.0.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "18.3.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "17.2.7"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.3.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "19.2.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "18.4.501_ES"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.3.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.1.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "19.2.929"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "19.2.31"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "19.2.32"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.2.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.2.1_927"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "18.4.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.2_928"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.2_929"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.4.1.0.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.2.1_930"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "19.2.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.5.0.1.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.4.1.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.3.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "19.2.4.0.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.2_937"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.5.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.1.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.3.0.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.3.1.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.3.1.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.4.1.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.3.0.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.4.1.1.5"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.4.1.0.02"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.3.1.7"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.3.1.5"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.5.1.0.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.3.1.10"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.3.0.8"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.4.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.3.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.3.0.14"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "19.2.4.0.8"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "19.2.4.0.9"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.4.0.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.2.0.5"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.5.1.0.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.1.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.0.18.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.2.0.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.0.18.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.4.2.0.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.3.0.16"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.1.0.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.4.0.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.7.1EFT2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.4.0.9"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.4.0.11"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.3.0.18"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.2.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.3.4.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.4.2.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.4.2.1.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.4.1.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.813"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.4.0.19"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.4.2.2.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.5.1.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.814"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.4.2.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.2.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.4.2.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.4.1.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.4.0.20"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.2.2.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.4.2.2.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.2.0.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.4.0.24"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.2.2.7"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.4.2.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.4.2.2.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.5.0.8"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.5.0.9"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.5.0.7"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.3.0.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.9.1EFT2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.3.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.3.7"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.4.2.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.3.5.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.3.4.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.3.3.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.3.7.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.3.4.0.25"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.2.2.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.1.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.1.3.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.6.5.1.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "20.3.8"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "20.12.501"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "26.1.1"}}], "enrichment": {"confidence": 91.0, "confidence_source": "matching", "scores": [{"score": 91.0, "source": "matching"}]}, "original": {"product": "Cisco Catalyst SD-WAN Manager", "source": "cna", "vendor": "Cisco"}, "product": "catalyst_sd-wan_manager", "vendor": "cisco"}], "created": "2026-02-26T13:15:38.416368+00:00", "updated": "2026-02-26T13:15:38.416707+00:00", "vendors": ["cisco", "cisco$PRODUCT$catalyst_sd-wan_manager"]}