Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-1301
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote malicious user to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xe Sd-wan -
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.4
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
1 Article
6.8
CVSSv3
CVE-2020-3216
A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, physical malicious user to bypass authentication and gain unrestricted access to the root shell of an affected device. The vulnerability exists because the affected software has insufficient authentic...
Cisco Ios Xe Sd-wan 16.9.0
Cisco Ios Xe Sd-wan 16.9.1
Cisco Ios Xe Sd-wan 16.9.2
Cisco Ios Xe Sd-wan 16.9.3
Cisco Ios Xe Sd-wan 16.9.4
Cisco Ios Xe Sd-wan 16.10.0
Cisco Ios Xe Sd-wan 16.10.1
7.8
CVSSv3
CVE-2020-3600
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient security controls on the CLI. An attacker could exploit this vulnerability by usi...
Cisco Sd-wan
7.8
CVSSv3
CVE-2020-3593
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a craft...
Cisco Sd-wan
7.8
CVSSv3
CVE-2020-3594
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by providing craft...
Cisco Sd-wan
7.8
CVSSv3
CVE-2020-3595
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root group on the underlying operating system. The vulnerability is due to incorrect permissions being set when the affected command is executed. An attacker could...
Cisco Sd-wan
7.5
CVSSv3
CVE-2023-20262
A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote malicious user to cause a process crash, resulting in a DoS condition for SSH access only. This vulnerability does not prevent the system from continuing to function, and we...
Cisco Sd-wan Vmanage 20.12
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
7.8
CVSSv3
CVE-2020-3180
A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, local malicious user to access an affected device by using an account that has a default, static password. This account has root privileges. The vulnerability exists because the affected software ha...
Cisco Sd-wan
9.1
CVSSv3
CVE-2023-20214
A vulnerability in the request authentication validation for the REST API of Cisco SD-WAN vManage software could allow an unauthenticated, remote malicious user to gain read permissions or limited write permissions to the configuration of an affected Cisco SD-WAN vManage instance...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.6.3.3
Cisco Catalyst Sd-wan Manager
1 Article
7.8
CVSSv3
CVE-2021-1514
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to inject arbitrary commands to be executed with Administrator privileges on the underlying operating system. This vulnerability is due to insufficient input validation on certa...
Cisco Sd-wan Vbond Orchestrator
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
Cisco Vsmart Controller Firmware
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Vedge-100b Firmware
Cisco Vedge Cloud Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »