{"slug": "yet-another-cisco-sd-wan-0-day-under-attack-and-no-patch-in-sight", "title": "Yet another Cisco SD-WAN 0-day under attack, and no patch in sight", "summary": "Cisco confirmed that attackers are actively exploiting a previously unknown zero-day vulnerability in its SD-WAN software, with no patch currently available. The flaw affects multiple versions of the networking platform, leaving enterprise customers exposed to potential remote code execution. Cisco urged administrators to implement workarounds while the company develops a fix.", "body_md": "**SPONSORED LINKS**\n\n### MOST POPULAR\n\n## EVENTS\n\n-\n### Overcoming the trade-offs in data sovereignty\n\nWhat does data sovereignty actually mean for your network, which trade-offs are unavoidable? Learn more.\n\n-\n### From Prompt to Exploit: How LLMs Are Changing API Attacks\n\nModern applications are API-driven, interconnected, and often over-permissioned, making them an ideal target for AI-assisted attacks.\n\n-\n### Architecting the Future: Unlocking Enterprise Data Services for Kubernetes\n\nJoin us to discover how to eliminate infrastructure silos and establish a standardized, enterprise-grade cloud-native platform.\n\n-\n### Catch the Advanced Attacks Microsoft 365 Misses with Behavioral AI Security\n\nMicrosoft 365 is the backbone of enterprise communication, and its native security filters out the known and the noisy.\n\n-\n### Virtual Cyber Recovery Sim\n\nStep into the chaos of a live ransomware breach, test your response skills, and team up with other IT and security pros to outsmart cybercriminals\n\n-\n### Virtual Cyber Recovery Simulation\n\nRansomware attacks aren’t slowing down, and neither are we. Druva’s hit event, Escape Ransomware, is now fully virtual.\n\n-\n### Zero Trust for the Agentic AI Era\n\nThe identity and access models most organizations rely on were built for human users, not non-human identities operating independently.\n\n-\n### Zero Trust for the Agentic AI Era\n\nThe identity and access models most organizations rely on were built for human users, not non-human identities operating independently.\n\n-\n### Agentic AI at Scale: From Pilot to Production\n\nJoin us to learn how to unlock real ROI by driving adoption of AI at scale.\n\n[AI](https://beta.theregister.com/tag/ai)\n\n-\nsecurity\n\n#### Oxford Uni student data pwned yet again - this time via career platform breach\n\nTotally different attack from the break-in last month. Oh so that's OK then\n\n-\nlegal\n\n#### Start spreading the news: Datacenters may face one-year ban in NY\n\nThe bill awaits Gov. Hochul's signature after passing the state legislature\n\n-\ncyber-crime\n\n#### If you don't fall for these extortionists' calls, they'll show up with USB sticks\n\nWhen 'Chatty Spider' morphs into tech services cosplay spider\n\n-\nsecurity\n\n#### Yet another Cisco SD-WAN 0-day under attack, and no patch in sight\n\nGood luck, sys admins\n\n-\nSCIENCE\n\n#### Serious ISS air leak forces NASA astronauts to temporarily take shelter in Dragon capsule\n\nBusiness is back to normal in the orbital station, but one of two newly discovered leaks is still unrepaired\n\n[Infosec](https://beta.theregister.com/security)\n\n-\nsecurity\n\n#### Oxford Uni student data pwned yet again - this time via career platform breach\n\nTotally different attack from the break-in last month. Oh so that's OK then\n\n-\nlegal\n\n#### Start spreading the news: Datacenters may face one-year ban in NY\n\nThe bill awaits Gov. Hochul's signature after passing the state legislature\n\n-\ncyber-crime\n\n#### If you don't fall for these extortionists' calls, they'll show up with USB sticks\n\nWhen 'Chatty Spider' morphs into tech services cosplay spider\n\n-\nsecurity\n\n#### Yet another Cisco SD-WAN 0-day under attack, and no patch in sight\n\nGood luck, sys admins\n\n-\nSCIENCE\n\n#### Serious ISS air leak forces NASA astronauts to temporarily take shelter in Dragon capsule\n\nBusiness is back to normal in the orbital station, but one of two newly discovered leaks is still unrepaired\n\n[FOSS](https://beta.theregister.com/tag/FOSS)\n\n-\n#### Oxford Uni student data pwned yet again - this time via career platform breach\n\nTotally different attack from the break-in last month. Oh so that's OK then\n\n-\n#### Start spreading the news: Datacenters may face one-year ban in NY\n\nThe bill awaits Gov. Hochul's signature after passing the state legislature\n\n-\n#### If you don't fall for these extortionists' calls, they'll show up with USB sticks\n\nWhen 'Chatty Spider' morphs into tech services cosplay spider\n\n-\n#### Yet another Cisco SD-WAN 0-day under attack, and no patch in sight\n\nGood luck, sys admins\n\n-\n#### Serious ISS air leak forces NASA astronauts to temporarily take shelter in Dragon capsule\n\nBusiness is back to normal in the orbital station, but one of two newly discovered leaks is still unrepaired\n\n-\n#### Trump pumps federal funds into coal plants in the name of energy security\n\nDoE wants to keep 13 coal-fired power generators going at the same time as funding nuclear research", "url": "https://wpnews.pro/news/yet-another-cisco-sd-wan-0-day-under-attack-and-no-patch-in-sight", "canonical_source": "https://www.theregister.com/security/2026/06/05/yet-another-cisco-sd-wan-0-day-under-attack-and-no-patch-in-sight/5251855", "published_at": "2026-06-05 17:27:42+00:00", "updated_at": "2026-06-06 10:11:09.117921+00:00", "lang": "en", "topics": ["ai-safety", "ai-policy"], "entities": ["Cisco"], "alternates": {"html": "https://wpnews.pro/news/yet-another-cisco-sd-wan-0-day-under-attack-and-no-patch-in-sight", "markdown": "https://wpnews.pro/news/yet-another-cisco-sd-wan-0-day-under-attack-and-no-patch-in-sight.md", "text": "https://wpnews.pro/news/yet-another-cisco-sd-wan-0-day-under-attack-and-no-patch-in-sight.txt", "jsonld": "https://wpnews.pro/news/yet-another-cisco-sd-wan-0-day-under-attack-and-no-patch-in-sight.jsonld"}}