Verify SD-WAN PSIRT with the Check Bug Applicability Tool

Available Languages

Download Options

  • PDF     (366.8 KB)
    View with Adobe Reader on a variety of devices
  • ePub     (3.6 MB)
    View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
Updated:May 15, 2026
Document ID:225920

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Introduction

This document describes how to use the Bug Applicability tool to scan admin-tech files for possible Indicators of Compromise (IoCs) related to SD-WAN Product Security Incident Response Team (PSIRT) CVE-2026-20182CSCwt50498

Requirements

For CSCwt50498, you must generate an admin-tech of your SD-WAN control components. The Controller (vSmart) admin-techs must be generated one at a time.

The admin-techs of other SD-WAN control components can be generated in any order.

Admin-Tech Generation Guidelines

If you need assistance creating these files, please refer to the this document that provides the steps to generate an admin-tech: How to Collect an Admin-Tech in an SD-WAN Environment.

Limitations

  • The file size is currently limited to 500 MB.
  • Simultaneous file verification is not supported. The tool can process multiple files, but only one at a time.

Utilization

Verify an Admin-Tech

  1. Go to the Cisco Bug Search Tool page for the Cisco Bug ID you want to analyze. 
  2. Under the title, click on the text or icon "Check Bug Applicability". A pop-up window appears.
  3. Drop or select the admin-tech file you want to analyze.

alt-tag-for-image

Results - No Indicators

If no indicators are found, a message similar to "CVE-2026-20182 - No Indicators of Compromise (IoCs) detected in logs. Current release is not a fixed release" appears. The message will reference the specific Bug ID being analyzed.

Note: If you have not upgraded yet, please proceed and upgrade immediately to a release containing the fix.

alt-tag-for-image

Results - Indicators Found

If the tool finds indicators, the message "Potential Indicators of Compromise (IoCs) Detected" appears.

Please open a Cisco TAC case and upload the admin-techs for further manual review.

Note: If you have not upgraded yet, please proceed and upgrade immediately to a release containing the fix.

alt-tag-for-image

Analyze an Additional Admin-Tech

To analyze another admin-tech, click "Re-run" and enter the applicable Cisco Bug ID (e.g., CSCwt50498) to see the upload section again. Other options include scrolling up and clicking "Check <Bug ID>" or typing the bug ID into the chat.

alt-tag-for-image

Additional Options Available

After analyzing an admin-tech, these additional options are available in the tool:

  • View Advisory Summary
  • View Fixed Releases
  • View Additional Info
  • Send Analysis Summary
 

Revision History

Revision Publish Date Comments
2.0
15-May-2026
Documentation Update
1.0
14-May-2026
Initial Release
TAC Authored

Contributed by Cisco Engineers

  • Eliel Garcia
    Technical Consulting Engineering Technical Leader

Was this Document Helpful?

FeedbackFeedback

Contact Cisco

This Document Applies to These Products