Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vmanage vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2023-20113
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficient CSRF protections for...
Cisco Sd-wan 20.9.0
Cisco Sd-wan 20.8.0
Cisco Sd-wan
5.3
CVSSv3
CVE-2022-20830
A vulnerability in authentication mechanism of Cisco Software-Defined Application Visibility and Control (SD-AVC) on Cisco vManage could allow an unauthenticated, remote malicious user to access the GUI of Cisco SD-AVC without authentication. This vulnerability exists because the...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
Cisco Catalyst Sd-wan Manager 20.7
7.8
CVSSv3
CVE-2022-20818
Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to gain elevated privileges. These vulnerabilities are due to improper access controls on commands within the application CLI. An attacker could exploit these vulnerabi...
Cisco Sd-wan Vbond Orchestrator
Cisco Sd-wan Vmanage
Cisco Sd-wan Vsmart Controller
Cisco Sd-wan
1 Github repository
5.3
CVSSv3
CVE-2022-20844
A vulnerability in authentication mechanism of Cisco Software-Defined Application Visibility and Control (SD-AVC) on Cisco vManage could allow an unauthenticated, remote malicious user to access the GUI of Cisco SD-AVC using a default static username and password combination. Thi...
Cisco Sd-wan 20.7.1
Cisco Sd-wan 20.3.4.1
Cisco Sd-wan 20.3.4.2
Cisco Sd-wan 20.3.5
Cisco Sd-wan
7.1
CVSSv3
CVE-2022-20850
A vulnerability in the CLI of stand-alone Cisco IOS XE SD-WAN Software and Cisco SD-WAN Software could allow an authenticated, local malicious user to delete arbitrary files from the file system of an affected device. This vulnerability is due to insufficient input validation. An...
Cisco Sd-wan Vsmart Controller
Cisco Sd-wan Vmanage
Cisco Sd-wan Vbond Orchestrator
Cisco Ios Xe Sd-wan
Cisco Sd-wan
6.7
CVSSv3
CVE-2022-20930
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to overwrite and possibly corrupt files on an affected system. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by inject...
Cisco Sd-wan Vbond Orchestrator 20.8
Cisco Sd-wan Vsmart Controller 20.8
Cisco Sd-wan Vsmart Controller
Cisco Sd-wan Vmanage
Cisco Sd-wan Vbond Orchestrator
Cisco Sd-wan Vbond Orchestrator 20.9
Cisco Sd-wan Vsmart Controller 20.9
Cisco Catalyst Sd-wan Manager 20.9
Cisco Catalyst Sd-wan Manager 20.8
Cisco Sd-wan
Cisco Sd-wan 20.8
Cisco Sd-wan 20.9
7.8
CVSSv3
CVE-2022-20775
Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to gain elevated privileges. These vulnerabilities are due to improper access controls on commands within the application CLI. An attacker could exploit these vulnerabi...
Cisco Sd-wan Vbond Orchestrator
Cisco Sd-wan Vbond Orchestrator 20.8
Cisco Sd-wan Vsmart Controller 20.8
Cisco Sd-wan Vsmart Controller
Cisco Catalyst Sd-wan Manager 20.8
Cisco Catalyst Sd-wan Manager
Cisco Sd-wan
Cisco Sd-wan 20.8
8.8
CVSSv3
CVE-2022-20696
A vulnerability in the binding configuration of Cisco SD-WAN vManage Software containers could allow an unauthenticated, adjacent attacker who has access to the VPN0 logical network to also access the messaging service ports on an affected system. This vulnerability exists becaus...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
1 Article
4.4
CVSSv3
CVE-2022-20734
A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, local malicious user to view sensitive information on an affected system. This vulnerability is due to insufficient file system restrictions. An authenticated attacker with netadmin privileges could ex...
Cisco Catalyst Sd-wan Manager
7.8
CVSSv3
CVE-2022-20716
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to gain escalated privileges. This vulnerability is due to improper access control on files within the affected system. A local attacker could exploit this vulnerability by modi...
Cisco Sd-wan Vbond Orchestrator -
Cisco Sd-wan Vedge Router -
Cisco Sd-wan Solution -
Cisco Sd-wan Vedge Cloud -
Cisco Sd-wan Vsmart Controller Software -
Cisco Catalyst Sd-wan Manager -
Cisco Sd-wan
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »