CISA Orders Patch for Critical Cisco SD-WAN Flaw by 2026

The U.S. Cybersecurity and Infrastructure Security Agency ordered federal civilian executive branch agencies on Thursday to patch a critical vulnerability in Cisco Catalyst SD-WAN Controller and Manager software by May 17, 2026, after confirming active exploitation of the flaw. Tracked as CVE-2026-