Indicator of Compromise
CVE-2026-20127
A CVE identifier for a specific software vulnerability referenced in this reporting.
Seen in these reports
Cyber Security Blog · Jun 5, 2026
Cisco SD-WAN Zero-Day Shows Edge Controllers Need Compromise Review
Cyber Security Blog · May 14, 2026
Cisco SD-WAN Exploitation Shows Edge Controllers Need Emergency Review
General CTI · Feb 25, 2026
Cisco Talos Exposes Three-Year Campaign: UAT-8616 Exploits SD-WAN Zero-Day for Critical Infrastructure Access
Related indicators
Indicators that appear alongside this one in the same reporting, often shared infrastructure or the same campaign.
CVE-2026-20182 CVE-2025-20333 CVE-2025-20362 02654acfb21f83485393ba8b14bd8862b919b9ec966fc6768f6aac1338a45ee8 0c87871642f84e09e8d3fb23ec36bf55601323e31151a7017a85dbec929cf15d 0ed72d52347bfe4a78afff8a6982a64050c8fc86d8957a20eeb3e0f3f5342ed0 1[.]1[.]1[.]10104[.]233[.]156[.]113[.]62[.]52[.]206 17302d903baf182f94dc3be40ab1e0874dd0eb2ec5255bf9131fd53591efe925 176[.]65[.]139[.]31 18d77c9c5bbb5b9d5bdfd366fdfcf26bad9e64c63ca865fad711bcce8e3d5a80 194[.]163[.]175[.]135194[.]233[.]100[.]401a820b09-95ba-44eb-b350-417e8241b725-00-1lgwuuen9b77p[.]worf[.]replit[.]dev20[.]12[.]7[.]120[.]12[.]7[.]220[.]15[.]4[.]420[.]15[.]4[.]520[.]15[.]5[.]220[.]15[.]5[.]320[.]18[.]3[.]120[.]9[.]9[.]120[.]9[.]9[.]2212[.]83[.]162[.]3723[.]27[.]143[.]17026[.]1[.]1[.]126[.]1[.]1[.]238[.]181[.]52[.]8938[.]60[.]214[.]9247[.]104[.]248[.]7 5bc5998161056b7c8f70c9724d8a63abc7ff8c3843b91c30cffab0899e39b7f8 65[.]20[.]67[.]13471[.]80[.]85[.]135 72f570ce97de3eaaffef33d90b0c337a153fc9690cc34ee207b557d868360060 79[.]135[.]105[.]208 7aa88a64a527ade7d93c20faf23b54f2ee33ad9b1246cdc2f8ded2ab639affb1 83[.]229[.]126[.]19589[.]125[.]244[.]3389[.]125[.]244[.]51