CISA Orders Cisco Patch by Sunday as Flaw Is Exploited

CISA has added Cisco flaw CVE-2026-20230 to its Known Exploited Vulnerabilities catalog and ordered federal agencies to patch by Sunday, June 28…

Why this jumped to the top of CISA's list

Under Binding Operational Directive BOD 26-04 , CISA has ordered civilian federal agencies to remediate the issue by Sunday, June 28.

What the attackers are actually doing

The shift from theoretical to active came when threat detection startup Defused observed CVE-2026-20230 being exploited last weekend.

How the SSRF flaw works mechanically

At a high level, the attack hinges on how the server handles certain HTTP requests.

It is not just Cisco: PTC Windchill added too

CISA did not stop at the Cisco entry.

Get the full story

Read the complete breakdown, fixes and what happens next.