CISA Urges Government Agencies to Patch Vulnerable Cisco SD-WAN Devices

Vaibhav April 22, 2026
www.news4hackers.com-cisa-urges-government-agencies-to-patch-vulnerable-cisco-sd-wan-devices-cisa-urges-government-agencies-to-patch-vulnerable-cisco-sd-wan-devices
Post Views: 2

Federal Agencies Ordered to Secure Networks Against Exploited Cisco Flaw

The US Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent directive to federal civilian executive branch agencies to secure their networks against a recently patched vulnerability in Cisco’s SD-WAN Manager platform.

  • The agency cited evidence of active exploitation and added the vulnerability, tracked as CVE-2026-20133, to its Known Exploited Vulnerabilities catalog on Monday.
  • The directive requires affected agencies to secure their networks by Friday, April 24.
  • CISA also urged organizations to assess their exposure and follow its emergency directive and hardening guidance for Cisco SD-WAN devices.
  • Furthermore, the agency suggested that organizations should either follow applicable BOD 22-01 guidance for cloud services or discontinue use of the product if mitigations are not available.

“According to CISA, the vulnerability in Cisco’s SD-WAN Manager platform could allow unauthenticated remote attackers to access sensitive information on unpatched devices.”

Recent Patches and Urgent Directives from Cisco

In response to the CISA directive, Cisco patched the information disclosure flaw, which could allow unauthenticated remote attackers to access sensitive information on unpatched devices, in late February.

  • Cisco has not confirmed the CISA assessment that the flaw is being exploited in attacks.
  • This latest directive follows recent patches for multiple vulnerabilities in Cisco’s SD-WAN and firewall management products.
  • Additionally, in February, Cisco identified a critical authentication bypass vulnerability, CVE-2026-20127, as having been exploited in zero-day attacks that enabled threat actors to add malicious rogue peers to targeted networks since at least 2023.
  • The company has faced several serious security issues affecting its SD-WAN and firewall management products in recent months.

CISA Directive Highlights Importance of Prompt Action

The CISA directive highlights the urgency surrounding the CVE-2026-20133 flaw and emphasizes the importance of prompt action by affected agencies to secure their networks and protect against potential threats.


Blog Image

About Author

Vaibhav

See author's posts

More Stories

www.news4hackers.com-mumbai-bank-employee-loses-97-lakhs-in-phony-online-trading-scheme-mumbai-bank-employee-loses-97-lakhs-in-phony-online-trading-scheme

Mumbai Bank Employee Loses ₹97 Lakhs in Phony Online Trading Scheme

Vaibhav April 22, 2026
Cisco-Catalyst-SD-WAN-Manager-Bug-Exploited-New-CVE-Identified

Cisco Catalyst SD-WAN Manager Bug Exploited, New CVE Identified

Vaibhav April 21, 2026
Apache-ActiveMQ-Flaw-Affects-Over-6-400-Servers-Globally

Apache ActiveMQ Flaw Affects Over 6,400 Servers Globally

Vaibhav April 21, 2026

Latest Cyber Security News

www.news4hackers.com-cisa-urges-government-agencies-to-patch-vulnerable-cisco-sd-wan-devices-cisa-urges-government-agencies-to-patch-vulnerable-cisco-sd-wan-devices

CISA Urges Government Agencies to Patch Vulnerable Cisco SD-WAN Devices

Vaibhav April 22, 2026
www.news4hackers.com-pune-loses-over-rs-119-crores-to-investment-and-cyber-fraud-scams-pune-loses-over-rs-119-crores-to-investment-and-cyber-fraud-scams

Pune Loses Over Rs 119 Crores to Investment and Cyber Fraud Scams

Vaibhav April 22, 2026
www.news4hackers.com-check-point-uncovers-link-between-systembc-malware-and-gentlemen-ransomware-operation-check-point-uncovers-link-between-systembc-malware-and-gentlemen-ransomware-operation

Check Point Uncovers Link Between SystemBC Malware and Gentlemen Ransomware Operation

Vaibhav April 22, 2026
www.news4hackers.com-mumbai-bank-employee-loses-97-lakhs-in-phony-online-trading-scheme-mumbai-bank-employee-loses-97-lakhs-in-phony-online-trading-scheme

Mumbai Bank Employee Loses ₹97 Lakhs in Phony Online Trading Scheme

Vaibhav April 22, 2026
www.news4hackers.com-over-1300-microsoft-sharepoint-servers-vulnerable-to-spoofing-attacks-over-1300-microsoft-sharepoint-servers-vulnerable-to-spoofing-attacks

Over-1300-Microsoft-SharePoint-Servers-Vulnerable-to-Spoofing-Attacks

Vaibhav April 22, 2026
en_USEnglish
en_USEnglish