{"vulnerability": "CVE-2026-20128", "sightings": [{"uuid": "7f6ced43-9335-4df8-b45e-75d43ee3b193", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://www.cert.at/de/warnungen/2026/2/kritische-sicherheitslucken-in-cisco-catalyst-sd-wan-aktiv-ausgenutzt-updates-verfugbar", "creation_timestamp": "2026-02-26T11:58:53.000000Z"}, {"uuid": "20bf2f00-3406-4646-9910-46f596ab7b40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mgfcv6epdc23", "creation_timestamp": "2026-03-06T12:30:03.374128Z"}, {"uuid": "65c171f5-945b-4cec-9618-8acce5ec20a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://infosec.exchange/users/edwardk/statuses/116176479912988309", "creation_timestamp": "2026-03-05T12:06:41.335310Z"}, {"uuid": "9f48c7bd-d852-4d59-aebe-b30f120106d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mgbcwkndfq2q", "creation_timestamp": "2026-03-04T22:20:10.368084Z"}, {"uuid": "4ec1fd7d-eafe-4a82-a3ec-bf4baaa7af25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2026-0071", "creation_timestamp": "2026-03-06T11:07:02.000000Z"}, {"uuid": "55c966b1-c3bf-43f0-af0a-73bad23d2fc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/e-kiledjian.bsky.social/post/3mgcr5jawyk2x", "creation_timestamp": "2026-03-05T12:07:17.441553Z"}, {"uuid": "a78aa9ac-cc84-4b01-956d-5a451b35ac43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-03-08)", "creation_timestamp": "2026-03-08T00:00:00.000000Z"}, {"uuid": "ed87dfd4-6ae3-4d9a-b9f2-adcf2260abf0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mgik6iv3ac23", "creation_timestamp": "2026-03-07T19:18:31.561673Z"}, {"uuid": "c08f9fbf-3e7a-4ded-9733-60e7e52a13ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-03-09)", "creation_timestamp": "2026-03-09T00:00:00.000000Z"}, {"uuid": "cbb7ac3a-25db-4ce7-a844-2ead19d5dde8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/hack4career.com/post/3mgfjdl24bc25", "creation_timestamp": "2026-03-06T14:25:28.093813Z"}, {"uuid": "9cb4d656-6180-4beb-b4d1-aa1ee9205f5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mgft3sath72m", "creation_timestamp": "2026-03-06T17:20:05.198636Z"}, {"uuid": "1d6991ed-84f5-4b73-afd5-add63b7e9af6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3mgepk4y3yk2h", "creation_timestamp": "2026-03-06T06:43:53.998274Z"}, {"uuid": "2f231039-aeee-4963-bba8-99d60b2924e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://threatintel.cc/2026/03/05/cisco-flags-more-sdwan-flaws.html", "creation_timestamp": "2026-03-05T11:06:47.000000Z"}, {"uuid": "fe3ddf05-4ce9-4262-9a36-96d26b9ae234", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-03-06)", "creation_timestamp": "2026-03-06T00:00:00.000000Z"}, {"uuid": "71ad014e-37f0-4e9c-8496-2caf48252a30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-03-07)", "creation_timestamp": "2026-03-07T00:00:00.000000Z"}, {"uuid": "53009f4c-2b91-4f69-a6e6-dd803edd01eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mfp5rtagrx26", "creation_timestamp": "2026-02-25T17:00:08.671305Z"}, {"uuid": "bc3c9180-b69f-4bf9-ab61-01b172458be5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/ehcgroup.bsky.social/post/3mgfvck6wfs26", "creation_timestamp": "2026-03-06T17:59:40.361401Z"}, {"uuid": "ec97b2f5-b862-472a-84b5-b30edec44715", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/solidot.bsky.social/post/3mgd7vksqzs2o", "creation_timestamp": "2026-03-05T16:31:14.640525Z"}, {"uuid": "6c401869-561e-4e41-96c3-d91d2d68852d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mgg7kcsqtw2q", "creation_timestamp": "2026-03-06T21:03:00.389389Z"}, {"uuid": "dccd7b6b-69a5-4f6e-be97-77d9b2fe4878", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-03-06)", "creation_timestamp": "2026-03-06T00:00:00.000000Z"}, {"uuid": "cf5d02ea-7edf-4f7f-894e-a49fc6a2c0bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/sctocs.bsky.social/post/3mgfvn535zs2t", "creation_timestamp": "2026-03-06T18:05:43.036120Z"}, {"uuid": "a51ab98c-d446-4902-adc9-ec98cf405778", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/firstpasslab.bsky.social/post/3mgdfudtaec2t", "creation_timestamp": "2026-03-05T18:17:57.005069Z"}, {"uuid": "188ba8c7-2a8e-4551-a8d4-08518bd30cb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mfp7zskmoa2x", "creation_timestamp": "2026-02-25T17:40:22.758773Z"}, {"uuid": "c3f74f7b-7221-4f7e-987a-032f69438a5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-03-10)", "creation_timestamp": "2026-03-10T00:00:00.000000Z"}, {"uuid": "e6ff67f8-e4bb-44f4-a352-4f4c1e24cc41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-03-19)", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "f828cccb-1613-48e3-9aea-180ec28633b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mfpa2lptbi2x", "creation_timestamp": "2026-02-25T17:40:49.070186Z"}, {"uuid": "58869f9c-6934-43e9-825d-eab4728fa8af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://www.kyberturvallisuuskeskus.fi/fi/kriittisia-haavoittuvuuksia-cisco-catalyst-sd-wan-tuotteissa", "creation_timestamp": "2026-02-25T18:43:06.000000Z"}, {"uuid": "3972d397-6fa0-49a9-b803-c1cdeb3efdf4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://infosec.exchange/users/AAKL/statuses/116250849364616830", "creation_timestamp": "2026-03-18T15:19:49.502256Z"}, {"uuid": "e013d363-ca1b-43aa-8db5-d502a4d52a54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/actualite/CERTFR-2026-ACT-010/", "creation_timestamp": "2026-03-09T00:00:00.000000Z"}, {"uuid": "41e5bbf9-a752-4209-94c6-0fcd3645855f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://www.acn.gov.it/portale/w/rilevato-sfruttamento-di-vulnerabilita-in-prodotti-cisco", "creation_timestamp": "2026-02-25T17:29:05.000000Z"}, {"uuid": "570429fa-77bc-43ff-a62c-116e117408cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/cisco-security-advisory-av26-166", "creation_timestamp": "2026-02-25T20:03:01.000000Z"}, {"uuid": "3fd13e7f-3ed3-402e-92e4-530d64f57ad9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-03-20)", "creation_timestamp": "2026-03-20T00:00:00.000000Z"}, {"uuid": "8d2e75f8-0a03-4de7-a572-6642f90053e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-03-19)", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "50a34af1-b5ab-4dde-a549-e8290b12b6eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://www.cert.se/2026/02/kritisk-nolldagssarbarhet-i-cisco-catalyst-sd-wan.html", "creation_timestamp": "2026-02-26T07:45:00.000000Z"}, {"uuid": "dcac2404-b7a9-464e-b436-781894a19bff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/b24f0b20-207c-4881-af91-eb1d15b224ba", "creation_timestamp": "2026-02-25T16:34:22.000000Z"}, {"uuid": "ba4b1084-df4c-49ee-8852-5b9da788464c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://www.cert.si/si-cert-2026-01/", "creation_timestamp": "2026-02-25T19:26:43.000000Z"}, {"uuid": "1e2b998e-b9d8-44eb-949e-9948da176f76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-20128", "type": "seen", "source": "https://www.ncsc.nl/alerts/actief-misbruik-van-kwetsbaarheden-in-cisco-producten", "creation_timestamp": "2026-03-06T15:20:00.000000Z"}]}