Is CVE-2026-20245 in the CISA Known Exploited Vulnerabilities catalog?

CVE-2026-20245 is not currently listed in the CISA KEV catalog.

Vulnerability intelligence

CVE-2026-20245

CVE-2026-20245 gives attackers root access via a crafted file upload. CVE-2026-20262 was exploited for months before patching. Mandiant traced one chain to a malicious CSV that opened a root shell. Seven zero-days in six months is not a vulnerability trend — it is an architectural failure.

2026

What WebPulse reported · 1 analysis

Cisco SD-WAN Logs Its Seventh Zero-Day of 2026. CISA Deadlines Are Piling Up.

CVE-2026-20245 gives attackers root access via a crafted file upload. CVE-2026-20262 was exploited for months before patching. Mandiant traced one chain to a ma

June 26, 2026

View CVE-2026-20245 on the NIST National Vulnerability Database →

Related vulnerabilities

CVE-2026-9082 CVE-2026-8206 CVE-2026-48019 CVE-2026-35273 CVE-2026-11645 CVE-2026-8181 CVE-2026-47291 CVE-2026-45657