Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2021-1301
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote malicious user to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xe Sd-wan -
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.4
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
1 Article
641
VMScore
CVE-2020-3216
A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, physical malicious user to bypass authentication and gain unrestricted access to the root shell of an affected device. The vulnerability exists because the affected software has insufficient authentic...
Cisco Ios Xe Sd-wan 16.9.0
Cisco Ios Xe Sd-wan 16.9.1
Cisco Ios Xe Sd-wan 16.9.2
Cisco Ios Xe Sd-wan 16.9.3
Cisco Ios Xe Sd-wan 16.9.4
Cisco Ios Xe Sd-wan 16.10.0
Cisco Ios Xe Sd-wan 16.10.1
641
VMScore
CVE-2020-3593
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a craft...
Cisco Sd-wan
641
VMScore
CVE-2020-3594
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by providing craft...
Cisco Sd-wan
641
VMScore
CVE-2020-3595
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root group on the underlying operating system. The vulnerability is due to incorrect permissions being set when the affected command is executed. An attacker could...
Cisco Sd-wan
641
VMScore
CVE-2020-3600
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient security controls on the CLI. An attacker could exploit this vulnerability by usi...
Cisco Sd-wan
NA
CVE-2023-20262
A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote malicious user to cause a process crash, resulting in a DoS condition for SSH access only. This vulnerability does not prevent the system from continuing to function, and we...
Cisco Sd-wan Vmanage 20.12
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
641
VMScore
CVE-2020-3180
A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, local malicious user to access an affected device by using an account that has a default, static password. This account has root privileges. The vulnerability exists because the affected software ha...
Cisco Sd-wan
NA
CVE-2023-20214
A vulnerability in the request authentication validation for the REST API of Cisco SD-WAN vManage software could allow an unauthenticated, remote malicious user to gain read permissions or limited write permissions to the configuration of an affected Cisco SD-WAN vManage instance...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.6.3.3
Cisco Catalyst Sd-wan Manager
1 Article
320
VMScore
CVE-2021-1512
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to overwrite arbitrary files in the underlying file system of an affected system. This vulnerability is due to insufficient validation of the user-supplied input parameters of a...
Cisco Sd-wan Vbond Orchestrator -
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
Cisco Vsmart Controller Firmware -
Cisco Vedge 100 Firmware -
Cisco Vedge 1000 Firmware -
Cisco Vedge 100b Firmware -
Cisco Vedge 100m Firmware -
Cisco Vedge 100wm Firmware -
Cisco Vedge 2000 Firmware -
Cisco Vedge 5000 Firmware -
Cisco Vedge-100b Firmware -
Cisco Vedge Cloud Firmware -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »