cisa kev

Cisco SD‑WAN users woke up to a coordinated, high‑urgency warning on February 25, 2026: U.S. and allied cyber agencies have confirmed active exploitation of critical vulnerabilities in Cisco Catalyst SD‑WAN products and have issued prescriptive guidance — including a U.S. Emergency Directive for...

CISA’s addition of CVE-2026-20045 to the Known Exploited Vulnerabilities (KEV) Catalog on January 21, 2026 elevates a code-injection flaw in Cisco’s Unified Communications portfolio from a vendor advisory to an operational emergency for federal agencies — and a high-priority remediation item for...