CVE

Cisco dropped one of its largest security patch bundles in recent memory on March 4, 2026 — 25 advisories covering 48 vulnerabilities across Secure Firewall ASA, Secure FTD, and Secure FMC. Two of those flaws score a perfect CVSS 10.0. If you’re studying for CCIE Security, these are the exact platforms you’ll face on exam day, and understanding how they break is just as important as knowing how to configure them. ...

CVE-2026-20127 is a maximum-severity (CVSS 10.0) authentication bypass vulnerability in Cisco Catalyst SD-WAN that has been actively exploited since 2023. Disclosed on February 25, 2026, it allows an unauthenticated remote attacker to bypass peering authentication on vSmart Controllers and vManage, gain admin-level access, reach the NETCONF interface, and manipulate routing and policy across an entire SD-WAN fabric. Five Eyes intelligence agencies issued a coordinated emergency advisory the same day, and CISA added it to the Known Exploited Vulnerabilities catalog within hours. ...