Cisco Product Security Update Advisory
Overview
Cisco has released security updates that address vulnerabilities in its products. Users of affected products are advised to update to the latest version.
Affected Products
CVE-2026-20010
Nexus 3000 Series Switches version: See Referenced Sites for version[1]
Nexus 9000 Series Fabric Switches in ACI mode version: See Referenced Sites for version[1]
Nexus 9000 Series Switches in standalone NX-OS mode version: See Referenced Sites for version [1]
UCS X-Series Direct Fabric Interconnects 9108 100G version: 4.3
CVE-2026-20033
Cisco Nexus 9000 Series Fabric Switches in ACI mode version: See Referenced Sites for version[2]
CVE-2026-20048
Cisco Nexus 9000 Series Fabric Switches in ACI mode version: Check the Referenced Sites for the version[3]
CVE-2026-20051
N3K-C36180YC-R version: Check the Referenced Sites for the version[4]
N3K-C3636C-R version: See Referenced Sites for version[4]
N9K-X96136YC-R version: See Referenced Sites to verify version[4]
N9K-X9636C-R version: See Referenced Sites to verify version[4]
N9K-X9636C-RX version: See Referenced Sites to verify version[4]
N9K-X9636Q-R version: See Referenced Sites for version[4]
CVE-2026-20126, CVE-2026-20128
Cisco Catalyst SD-WAN Manager version: less than 20.9
Cisco Catalyst SD-WAN Manager version: 20.9
Cisco Catalyst SD-WAN Manager version: 20.11
Cisco Catalyst SD-WAN Manager version: 20.12.5
Cisco Catalyst SD-WAN Manager version: 20.12.6
Cisco Catalyst SD-WAN Manager version: 20.13
Cisco Catalyst SD-WAN Manager version: 20.14
Cisco Catalyst SD-WAN Manager version: 20.15
Cisco Catalyst SD-WAN Manager version: 20.16
Cisco Catalyst SD-WAN Manager version: 20.18
Resolved Vulnerabilities
Denial of Service Vulnerability in Cisco NX-OS Software (CVE-2026-20010)
Denial of Service Vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode (CVE-2026-20033)
SNMP Denial of Service Vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode (CVE-2026-20048)
Denial of Service Vulnerability in Cisco Nexus 3600 and Cisco Nexus 9500-R Series Switching Platforms (CVE-2026-20051)
Privilege Escalation Vulnerability in Cisco Catalyst SD-WAN Manager (CVE-2026-20126)
Information Disclosure Vulnerability in Cisco Catalyst SD-WAN Manager (CVE-2026-20128)
Vulnerability Patches
Vulnerability Patches have been made available with the latest updates. Please follow the instructions on the Referenced Sites to update to the latest version of Vulnerability Patches.
CVE-2026-20010
Nexus 3000 Series Switches version: Update by following the Referenced Sites[1]
Nexus 9000 Series Fabric Switches in ACI mode versions: See Referenced Sites for updates[1]
Nexus 9000 Series Switches in standalone NX-OS mode version: See Referenced Sites for updates[1]
UCS X-Series Direct Fabric Interconnects 9108 100G (UCS Manager Mode) version: 4.3 (6e)
UCS X-Series Direct Fabric Interconnects 9108 100G (Intersight Managed Mode) version: 4.3 (6.260003)
CVE-2026-20033
Cisco Nexus 9000 Series Fabric Switches in ACI mode version: Updated from Referenced Sites[2]
CVE-2026-20048
Cisco Nexus 9000 Series Fabric Switches in ACI mode version: Updated with references to Referenced Sites[3]
CVE-2026-20051
N3K-C36180YC-R version: Updated with references to Referenced Sites[4]
N3K-C3636C-R version: Updated with Referenced Sites[4]
N9K-X96136YC-R version: Updated with Referenced Sites[4]
N9K-X9636C-R version: Updated with Referenced Sites[4]
N9K-X9636C-RX version: Updated with Referenced Sites[4]
N9K-X9636Q-R version: Updated with references to Referenced Sites[4]
CVE-2026-20126, CVE-2026-20128
Cisco Catalyst SD-WAN Manager versions: Migrate to a Fixed Release
Cisco Catalyst SD-WAN Manager version: 20.9.8.2
Cisco Catalyst SD-WAN Manager version: 20.12.6.1
Cisco Catalyst SD-WAN Manager version: 20.12.5.3
Cisco Catalyst SD-WAN Manager version: 20.12.6.1
Cisco Catalyst SD-WAN Manager version: 20.15.4.2
Cisco Catalyst SD-WAN Manager version: 20.15.4.2
Cisco Catalyst SD-WAN Manager version: 20.18.2.1
Cisco Catalyst SD-WAN Manager version: 20.18.2.1
Cisco Catalyst SD-WAN Manager version: 20.18.2.1
References
[1] Cisco NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability
[2] Cisco Nexus 9000 Series Fabric Switches in ACI Mode Denial of Service Vulnerability
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cpdos-qLsv6pFD
[3] Cisco Nexus 9000 Series Fabric Switches in ACI Mode SNMP Denial of Service Vulnerability
[4] Cisco Nexus 3600 and 9500-R Series Switching Platforms Layer 2 Loop Denial of Service Vulnerability
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-ether-dos-Kv8YNWZ4
[5] Cisco Catalyst SD-WAN Vulnerabilities
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-authbp-qwCX8D4v