Same pattern on a different vendor

Cisco SD-WAN Vulnerability Allows Hackers to Gain Root Access

June 24, 2026 · first reported June 25, 2026 · confidence: high

Cisco SD-WAN

Cisco SD-WAN Vulnerability Allows Hackers to Gain Root Access

First reported on bleepingcomputer on June 25, 2026.

Hackers have exploited a Cisco SD-WAN vulnerability to create fake root accounts on devices, giving them control.

What it looks like

Fake root accounts created on devices
Hackers gain control of devices

How to fix it

Contact Cisco support for guidance on securing your device.
Ask about updating your device's software to the latest version.
Request instructions on resetting your device to factory settings if necessary.
Follow the provided steps carefully to secure your device.
Monitor your device for any further issues.

Affected products

Cisco SD-WAN

Sources

Mandiant reveals how Cisco SD-WAN zero-day attacks gained root access — rss:bleepingcomputer

Search terms covered: cisco sd wan vulnerability, hackers gain root access on devices