CVE-2022-20775: Cisco SD-WAN Path Traversal Vulnerability. Cisco SD-WAN CLI

Cisco SD-WAN Path Traversal Vulnerability. Cisco SD-WAN CLI contains a path traversal vulnerability that could allow an authenticated local attacker to gain elevated privileges via improper access controls on commands within the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user.

• CISA KEV-listed (remediation due 2026-02-27)
• EPSS 0.4% (60.1% percentile)

Related briefings

• CVE-2026-20127: Active Exploitation at Scale of Cisco Catalyst SD-WAN Zero-Day - Webshell Deployment, Sophisticated Implants, and 50+ Attack IPs Observed 2026-03-05

Browse the CVE database

Read the full analysis on IntelFusions