AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

🔥 This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)

CVE-2022-20775: Cisco SD-WAN Path Traversal Vulnerability

infovulnerability🔥 Actively Exploited

security

Source: CISA Known Exploited VulnerabilitiesFebruary 24, 2026CVE-2022-20775

Summary

Cisco SD-WAN contains a path traversal vulnerability (a bug where attackers can access files outside intended directories) that allows an authenticated local attacker to gain elevated privileges and execute arbitrary commands as the root user through improper access controls in the CLI (command-line interface, a text-based way to control software). This vulnerability is actively being exploited by attackers.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.5%

Exploit Maturity

🔥 Actively Exploited

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-25 CWE-282

Original source: https://nvd.nist.gov/vuln/detail/CVE-2022-20775

First tracked: February 25, 2026 at 03:00 PM

Classified by LLM (prompt v3) · confidence: 95%