← ExploitWatch
HomeExploited Vulnerabilities

CVE-2022-20775 — Actively Exploited: SD-WAN (Cisco)

Cisco SD-WAN CLI contains a path traversal vulnerability that could allow an authenticated local attacker to gain elevated privileges via improper access controls on commands within the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user.

CVE IDCVE-2022-20775
VendorCisco
ProductSD-WAN
Vulnerability nameCisco SD-WAN Path Traversal Vulnerability
Date added2026-02-25
Remediation due2026-02-27
Known ransomware useUnknown
Required actionPlease adhere to CISA’s guidelines to assess exposure and mitigate risks associated with Cisco SD-WAN devices as outlines in CISA’s Emergency Directive 26-03 (URL listed below in Notes) and CISA’s “Hunt & Hardening Guidance for Cisco SD-WAN Devices (URL listed below in Notes). Adhere to the applicab
DescriptionCisco SD-WAN CLI contains a path traversal vulnerability that could allow an authenticated local attacker to gain elevated privileges via improper access controls on commands within the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →