Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2026/VULN219
_____________________________________________________________________

DATE                : 25/02/2026

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Cisco Catalyst, 
                  Cisco Nexus 9000 Series Fabric Switches software,
            Cisco Nexus 3600 and 9500-R Series Switching Platforms,
                   Cisco NX-OS Software,
                   Cisco FXOS and UCS Manager Software,
                   Cisco UCS Manager Software,
               Cisco Application Policy Infrastructure Controller.

=====================================================================
https://sec.cloudapps.cisco.com/security/center/publicationListing.x
_____________________________________________________________________

Below is the list of Cisco Security Advisories published by Cisco
PSIRT on 2026-February-25.

The following PSIRT security advisories (2 Critical, 4 High, 5
Medium) were published at 16:00 UTC today.

Table of Contents:

1) Cisco Catalyst SD-WAN Vulnerabilities - SIR: Critical

2) Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability
- SIR: Critical

3) Cisco Nexus 9000 Series Fabric Switches in ACI Mode SNMP Denial
of Service Vulnerability - SIR: High

4) Cisco Nexus 3600 and 9500-R Series Switching Platforms Layer 2
Loop Denial of Service Vulnerability - SIR: High

5) Cisco Nexus 9000 Series Fabric Switches in ACI Mode Denial of
Service Vulnerability - SIR: High

6) Cisco NX-OS Software Link Layer Discovery Protocol Denial of
Service Vulnerability - SIR: High

7) Cisco FXOS and UCS Manager Software Command Injection Vulnerability
- SIR: Medium

8) Cisco UCS Manager Software Command Injection Vulnerability -
SIR: Medium

9) Cisco Application Policy Infrastructure Controller Denial of
Service Vulnerability - SIR: Medium

10) Cisco FXOS and UCS Manager Software Stored Cross-Site Scripting
Vulnerability - SIR: Medium

11) Cisco UCS Manager Software Privilege Escalation Vulnerability
- SIR: Medium

+--------------------------------------------------------------------

1) Cisco Catalyst SD-WAN Vulnerabilities

CVE-2026-20122, CVE-2026-20126, CVE-2026-20128, CVE-2026-20129,
CVE-2026-20133

SIR: Critical

CVSS Score v(3.1): 9.8

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-authbp-qwCX8D4v ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-authbp-qwCX8D4v"]

+--------------------------------------------------------------------

2) Cisco Catalyst SD-WAN Controller Authentication Bypass
Vulnerability

CVE-2026-20127

SIR: Critical

CVSS Score v(3.1): 10.0

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-rpa-EHchtZk ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-rpa-EHchtZk"]

+--------------------------------------------------------------------

3) Cisco Nexus 9000 Series Fabric Switches in ACI Mode SNMP Denial
of Service Vulnerability

CVE-2026-20048

SIR: High

CVSS Score v(3.1): 7.7

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dsnmp-cNN39Uh ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-dsnmp-cNN39Uh"]

+--------------------------------------------------------------------

4) Cisco Nexus 3600 and 9500-R Series Switching Platforms
Layer 2 Loop Denial of Service Vulnerability

CVE-2026-20051

SIR: High

CVSS Score v(3.1): 7.4

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-ether-dos-Kv8YNWZ4 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-ether-dos-Kv8YNWZ4"]

+--------------------------------------------------------------------

5) Cisco Nexus 9000 Series Fabric Switches in ACI Mode Denial
of Service Vulnerability

CVE-2026-20033

SIR: High

CVSS Score v(3.1): 7.4

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cpdos-qLsv6pFD ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cpdos-qLsv6pFD"]

+--------------------------------------------------------------------

6) Cisco NX-OS Software Link Layer Discovery Protocol Denial
of Service Vulnerability

CVE-2026-20010

SIR: High

CVSS Score v(3.1): 7.4

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n3kn9k_aci_lldp_dos-NdgRrrA3 ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n3kn9k_aci_lldp_dos-NdgRrrA3"]

+--------------------------------------------------------------------

7) Cisco FXOS and UCS Manager Software Command Injection
Vulnerability

CVE-2026-20099

SIR: Medium

CVSS Score v(3.1): 6.7

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsciv-wGYtC78q ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsciv-wGYtC78q"]

+--------------------------------------------------------------------

8) Cisco UCS Manager Software Command Injection Vulnerability

CVE-2026-20036

SIR: Medium

CVSS Score v(3.1): 6.5

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsm-cmdinj-GvxLPeSB ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsm-cmdinj-GvxLPeSB"]

+--------------------------------------------------------------------

9) Cisco Application Policy Infrastructure Controller Denial
of Service Vulnerability

CVE-2026-20107

SIR: Medium

CVSS Score v(3.1): 5.5

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apic-dos-rNus8EFw ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apic-dos-rNus8EFw"]

+--------------------------------------------------------------------

10) Cisco FXOS and UCS Manager Software Stored Cross-Site
Scripting Vulnerability

CVE-2026-20091

SIR: Medium

CVSS Score v(3.1): 4.8

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsfxosxss-7skVE8Zv ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsfxosxss-7skVE8Zv"]

+--------------------------------------------------------------------

11) Cisco UCS Manager Software Privilege Escalation Vulnerability

CVE-2026-20037

SIR: Medium

CVSS Score v(3.1): 4.4

URL: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsm-afwae-mOgUfyLn ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsm-afwae-mOgUfyLn"]

=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================