Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2019-1652
A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands. The vulnerability is due to...
Cisco Rv320 Firmware 1.4.2.15
Cisco Rv325 Firmware 1.4.2.15
2 EDB exploits
2 Metasploit modules
2 Github repositories
2 Articles
9
CVSSv2
CVE-2019-1650
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affe...
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Sd-wan
Cisco Vmanage Network Management -
Cisco Vbond Orchestrator -
Cisco Vsmart Controller -
9
CVSSv2
CVE-2019-1651
A vulnerability in the vContainer of the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition and execute arbitrary code as the root user. The vulnerability is due to improper bounds checking by the vContainer. An ...
Cisco Vsmart Controller -
1 Article
9
CVSSv2
CVE-2018-0432
A vulnerability in the error reporting feature of the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to gain elevated privileges on an affected device. The vulnerability is due to a failure to properly validate certain parameters included within the err...
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Vmanage Network Management System -
9
CVSSv2
CVE-2018-0345
A vulnerability in the configuration and management database of the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to execute arbitrary commands with the privileges of the vmanage user in the configuration management system of the affected software. The...
Cisco Vmanage Network Management -
Cisco Vsmart Controller -
Cisco Vbond Orchestrator -
Cisco Vedge-plus -
Cisco Vedge-pro -
Cisco Vedge-100 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge-1000 Firmware
Cisco Vedge-2000 Firmware
Cisco Vedge-5000 Firmware
9
CVSSv2
CVE-2018-0348
A vulnerability in the CLI of the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability...
Cisco Vbond Orchestrator -
Cisco Vedge-plus -
Cisco Vedge-pro -
Cisco Vmanage Network Management -
Cisco Vsmart Controller -
Cisco Vedge-100 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge-1000 Firmware
Cisco Vedge-2000 Firmware
Cisco Vedge-5000 Firmware
9
CVSSv2
CVE-2018-0350
A vulnerability in the VPN subsystem configuration in the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could ex...
Cisco Vedge-pro -
Cisco Vmanage Network Management -
Cisco Vbond Orchestrator -
Cisco Vsmart Controller -
Cisco Vedge-plus -
Cisco Vedge-100 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge-1000 Firmware
Cisco Vedge-2000 Firmware
Cisco Vedge-5000 Firmware
8.5
CVSSv2
CVE-2022-20739
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local malicious user to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected system as a low-privileged user to ...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.7
8.5
CVSSv2
CVE-2021-44832
Apache Log4j2 versions 2.0-beta7 up to and including 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the tar...
Apache Log4j 2.0
Apache Log4j
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Weblogic Server 12.2.1.4.0
Oracle Primavera Unifier 19.12
Oracle Weblogic Server 14.1.1.0.0
Oracle Primavera Unifier 20.12
Oracle Communications Interactive Session Recorder 6.3
Oracle Communications Interactive Session Recorder 6.4
Oracle Primavera Gateway
Oracle Retail Assortment Planning 16.0.3
Oracle Primavera Unifier 21.12
Oracle Primavera P6 Enterprise Project Portfolio Management 21.12.0.0
Oracle Primavera P6 Enterprise Project Portfolio Management
Oracle Primavera Gateway 21.12.0
Oracle Retail Fiscal Management 14.2
Oracle Siebel Ui Framework 21.12
Oracle Communications Diameter Signaling Router
Cisco Cloudcenter 4.10.0.16
Fedoraproject Fedora 34
Fedoraproject Fedora 35
34 Github repositories
4 Articles
8.5
CVSSv2
CVE-2021-1509
Multiple vulnerabilities in Cisco SD-WAN vEdge Software could allow an malicious user to execute arbitrary code as the root user or cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details section of this a...
Cisco Vedge 100 Firmware
Cisco Vedge 100 Firmware 19.2.99
Cisco Vedge 1000 Firmware
Cisco Vedge 1000 Firmware 19.2.99
Cisco Vedge 100b Firmware
Cisco Vedge 100b Firmware 19.2.99
Cisco Vedge 100m Firmware
Cisco Vedge 100m Firmware 19.2.99
Cisco Vedge 100wm Firmware
Cisco Vedge 100wm Firmware 19.2.99
Cisco Vedge 2000 Firmware
Cisco Vedge 2000 Firmware 19.2.99
Cisco Vedge 5000 Firmware
Cisco Vedge 5000 Firmware 19.2.99
Cisco Vedge Cloud Firmware
Cisco Vedge Cloud Firmware 19.2.99
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »