{"uuid": "ac08c10c-2085-42d1-b71d-536567d73878", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20245", "type": "seen", "source": "https://t.me/thehackernews/9319", "content": "\u26a0\ufe0f Attackers exploited a #Cisco SD-WAN flaw before it was public.\n\nMandiant says CVE-2026-20245 was used as a zero-day to turn admin access into root control.\n\nThey also restored configs, deleted traces, and hid a rogue \u201ctroot\u201d account.\n\nRead \ud83e\udc16 https://thehackernews.com/2026/06/cisco-catalyst-sd-wan-zero-day-cve-2026.html", "creation_timestamp": "2026-07-15T12:00:04.428063Z"}