Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2020-3536
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability exists because the web-based management int...
Cisco Sd-wan 20.3.1
Cisco Sd-wan
7.1
CVSSv3
CVE-2021-1612
A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local malicious user to overwrite arbitrary files on the local system. This vulnerability is due to improper access controls on files within the local file system. An attacker could exploit this...
Cisco Sd-wan
6.5
CVSSv3
CVE-2020-3401
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct path traversal attacks and obtain read access to sensitive files on an affected system. The vulnerability is due to insufficient v...
Cisco Sd-wan Firmware
7.3
CVSSv3
CVE-2020-3405
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to gain read and write access to information that is stored on an affected system. The vulnerability is due to improper handling of XML External Entity (XXE) entries...
Cisco Sd-wan Firmware
5.4
CVSSv3
CVE-2020-3406
A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability exists because the web-based management...
Cisco Sd-wan Firmware
6.5
CVSSv3
CVE-2019-12619
A vulnerability in the web interface for Cisco SD-WAN Solution vManage could allow an authenticated, remote malicious user to impact the integrity of an affected system by executing arbitrary SQL queries. The vulnerability is due to insufficient validation of user-supplied input....
Cisco Sd-wan Firmware
7.2
CVSSv3
CVE-2019-12629
A vulnerability in the WebUI of the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to inject and execute arbitrary commands with vmanage user privileges on an affected system. The vulnerability is due to insufficient input validation of data parameters ...
Cisco Sd-wan Firmware
6.5
CVSSv3
CVE-2020-27128
A vulnerability in the application data endpoints of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to write arbitrary files to an affected system. The vulnerability is due to improper validation of requests to APIs. An attacker could exploit th...
Cisco Sd-wan
6.7
CVSSv3
CVE-2021-1454
Multiple vulnerabilities in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local malicious user to access the underlying operating system with root privileges. These vulnerabilities are due to insufficient input validation of certain CLI commands. An attack...
Cisco Ios Xe -
Cisco Ios Xe Sd-wan -
9.1
CVSSv3
CVE-2021-1225
Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote malicious user to conduct SQL injection attacks on an affected system. These vulnerabilities exist because the web-based management interface imp...
Cisco Sd-wan Vmanage
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »