Summary

The National Cyber Security Centre of Slovakia (SK-CERT) has issued a warning about an imminent threat of cyberattacks targeting Cisco Catalyst SD-WAN products. Critical zero-day vulnerabilities have been identified in these products, and SK-CERT has confirmed that these vulnerabilities are actively being exploited to compromise systems worldwide.

The warning is issued under Section 27(1)(a) of Act No. 69/2018 Z.z. on Cybersecurity.

Key Details

  • Affected product: Cisco Catalyst SD-WAN
  • Vulnerability type: Critical zero-day
  • Exploitation status: Actively exploited in the wild
  • Issuing authority: SK-CERT (National Cyber Security Centre, Slovakia)
  • Legal basis: §27 ods. 1 písm. a) zákona č. 69/2018 Z.z. o kybernetickej bezpečnosti
  • Organizations using Cisco Catalyst SD-WAN should treat this as an emergency

Impact

Active compromise of systems running Cisco Catalyst SD-WAN is confirmed globally. The severity is described as critical.

  • Apply any available Cisco security patches for Catalyst SD-WAN immediately
  • Monitor Cisco PSIRT advisories for official CVE details and patches
  • Implement network-level controls to limit SD-WAN management interface exposure
  • Review logs for indicators of compromise

Notes

  • Source: SK-CERT (Slovak language, translated to English)
  • Original title: “VAROVANIE – Aktívne zneužívaná kritická zero-day zraniteľnosť v CISCO CATALYST SD-WAN.”
  • No pubDate available in RSS feed (structural limitation of this source)
  • Date assigned as extraction date (2026-03-04); actual disclosure date may differ
  • No CVE numbers provided in the RSS entry; full advisory may contain more details

  • Confidence: 中 (medium) — source is Slovak, description truncated, no CVE specified

    Extracted: 2026-03-04 UTC | Source: SK-CERT (Slovakia) | Original Language: Slovak | Confidence: 中