Sign-up

ID

VAR-202602-4602


CVE

CVE-2026-20128


DESCRIPTION

A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker to gain DCA user privileges on an affected system. To exploit this vulnerability, the attacker must have valid vmanage credentials on the affected system. This vulnerability is due to the presence of a credential file for the DCA user on an affected system. An attacker could exploit this vulnerability by accessing the filesystem as a low-privileged user and reading the file that contains the DCA password from that affected system. A successful exploit could allow the attacker to access another affected system and gain DCA user privileges. Note: Cisco Catalyst SD-WAN Manager releases 20.18 and later are not affected by this vulnerability.

Trust: 1.0

sources: NVD: CVE-2026-20128

AFFECTED PRODUCTS

vendor:ciscomodel:catalyst sd-wan managerscope:ltversion:20.12.5.3

Trust: 1.0

vendor:ciscomodel:catalyst sd-wan managerscope:gteversion:20.11

Trust: 1.0

vendor:ciscomodel:catalyst sd-wan managerscope:gteversion:20.16

Trust: 1.0

vendor:ciscomodel:catalyst sd-wan managerscope:gteversion:20.13

Trust: 1.0

vendor:ciscomodel:catalyst sd-wan managerscope:ltversion:20.18

Trust: 1.0

vendor:ciscomodel:catalyst sd-wan managerscope:eqversion:20.12.6

Trust: 1.0

vendor:ciscomodel:catalyst sd-wan managerscope:ltversion:20.9.8.2

Trust: 1.0

vendor:ciscomodel:catalyst sd-wan managerscope:ltversion:20.15.4.2

Trust: 1.0

sources: NVD: CVE-2026-20128

CVSS

SEVERITY

CVSSV2

CVSSV3

psirt@cisco.com: CVE-2026-20128
value: HIGH

Trust: 1.0

psirt@cisco.com: CVE-2026-20128
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: HIGH
privilegesRequired: HIGH
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 0.8
impactScore: 6.0
version: 3.1

Trust: 1.0

sources: NVD: CVE-2026-20128

PROBLEMTYPE DATA

problemtype:CWE-257

Trust: 1.0

sources: NVD: CVE-2026-20128

EXTERNAL IDS

db:NVDid:CVE-2026-20128

Trust: 1.0

sources: NVD: CVE-2026-20128

REFERENCES

url:https://sec.cloudapps.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-sdwan-authbp-qwcx8d4v

Trust: 1.0

sources: NVD: CVE-2026-20128

SOURCES

db:NVDid:CVE-2026-20128

LAST UPDATE DATE

2026-03-05T23:44:53.952000+00:00


SOURCES UPDATE DATE

db:NVDid:CVE-2026-20128date:2026-03-04T21:13:56.113

SOURCES RELEASE DATE

db:NVDid:CVE-2026-20128date:2026-02-25T17:25:30.150