Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloud orchestrator vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2019-1648
A vulnerability in the user group configuration of the Cisco SD-WAN Solution could allow an authenticated, local malicious user to gain elevated privileges on an affected device. The vulnerability is due to a failure to properly validate certain parameters included within the gro...
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Sd-wan
Cisco Vsmart Controller -
Cisco Vmanage Network Management -
Cisco Vbond Orchestrator -
9
CVSSv2
CVE-2019-1650
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affe...
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Sd-wan
Cisco Vmanage Network Management -
Cisco Vbond Orchestrator -
Cisco Vsmart Controller -
NA
CVE-2022-20818
Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to gain elevated privileges. These vulnerabilities are due to improper access controls on commands within the application CLI. An attacker could exploit these vulnerabi...
Cisco Sd-wan Vbond Orchestrator
Cisco Sd-wan Vmanage
Cisco Sd-wan Vsmart Controller
Cisco Sd-wan
1 Github repository
7.2
CVSSv2
CVE-2021-1528
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to gain elevated privileges on an affected system. This vulnerability exists because the affected software does not properly restrict access to privileged processes. An attacker...
Cisco Sd-wan Vbond Orchestrator
Cisco Catalyst Sd-wan Manager
Cisco Vsmart Controller
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Vedge Cloud Firmware
7.2
CVSSv2
CVE-2021-1262
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated malicious user to perform command injection attacks against an affected device, which could allow the malicious user to take certain actions with root privileges on the device. For more information abo...
Cisco Sd-wan Firmware
Cisco Sd-wan Firmware 20.4
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
1 Article
4.3
CVSSv2
CVE-2020-2756
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with net...
Oracle Jdk 14.0.0
Oracle Jre 14.0.0
Oracle Jdk 11.0.6
Oracle Jre 11.0.6
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jre 1.8.0
Oracle Jre 1.7.0
Oracle Openjdk 8
Oracle Openjdk 7
Oracle Openjdk 14
Oracle Openjdk
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Snapmanager -
Netapp Storagegrid -
Netapp Storagegrid
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager
Netapp Santricity Unified Manager -
Netapp E-series Performance Analyzer -
Netapp E-series Santricity Web Services -
4.9
CVSSv2
CVE-2021-1233
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to access sensitive information on an affected device. The vulnerability is due to insufficient input validation of requests that are sent to the iperf tool. An attacker could e...
Cisco Sd-wan Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
4.3
CVSSv2
CVE-2020-2757
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with net...
Oracle Jdk 14.0.0
Oracle Jre 14.0.0
Oracle Jdk 11.0.6
Oracle Jre 11.0.6
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jre 1.8.0
Oracle Jre 1.7.0
Oracle Openjdk 8
Oracle Openjdk 7
Oracle Openjdk 14
Oracle Openjdk
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Storagegrid
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager
Netapp Santricity Unified Manager -
Netapp E-series Performance Analyzer -
7.2
CVSSv2
CVE-2018-0351
A vulnerability in the command-line tcpdump utility in the Cisco SD-WAN Solution could allow an authenticated, local malicious user to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could ex...
Cisco Vmanage Network Management -
Cisco Vbond Orchestrator -
Cisco Vedge-pro -
Cisco Vsmart Controller -
Cisco Vedge-plus -
Cisco Vedge-100 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge-1000 Firmware
Cisco Vedge-2000 Firmware
Cisco Vedge-5000 Firmware
9
CVSSv2
CVE-2018-0350
A vulnerability in the VPN subsystem configuration in the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could ex...
Cisco Vedge-pro -
Cisco Vmanage Network Management -
Cisco Vbond Orchestrator -
Cisco Vsmart Controller -
Cisco Vedge-plus -
Cisco Vedge-100 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge-1000 Firmware
Cisco Vedge-2000 Firmware
Cisco Vedge-5000 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »