The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that a vulnerability in Cisco's Catalyst SD-WAN Manager, identified as CVE-2026-20133, is being actively exploited in attacks, prompting federal agencies to secure their systems by April 24. Cisco has issued a patch for this information disclosure flaw, which allows unauthorized access to sensitive information on unpatched devices.
CISA has flagged a newly exploited vulnerability in Cisco's Catalyst SD-WAN Manager (CVE-2026-20133), urging immediate action to secure systems by April 24. For cybersecurity professionals, it is critical to assess exposure and apply patches as per CISA's Emergency Directive 26-03 and Hunt & Hardening Guidance, or consider discontinuing use if mitigations aren't feasible. This highlights the necessity for continuous monitoring and rapid response to actively exploited vulnerabilities in network management systems.