Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vmanage vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-1624
A vulnerability in the vManage web-based UI (Web UI) in the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could ...
Cisco Sd-wan
9.8
CVSSv3
CVE-2021-1300
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote malicious user to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xe Sd-wan -
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.4
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
1 Article
9.8
CVSSv3
CVE-2021-1301
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote malicious user to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco Ios Xe Sd-wan -
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.4
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
1 Article
6.5
CVSSv3
CVE-2021-34712
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct cypher query language injection attacks on an affected system. This vulnerability is due to insufficient input validation by the w...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.6
Cisco Catalyst Sd-wan Manager
Cisco Catalyst Sd-wan Manager 20.5
8.8
CVSSv3
CVE-2019-1626
A vulnerability in the vManage web-based UI (Web UI) of the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to gain elevated privileges on an affected vManage device. The vulnerability is due to a failure to properly authorize certain user actions in the...
Cisco Sd-wan Firmware
7.8
CVSSv3
CVE-2020-3593
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a craft...
Cisco Sd-wan
7.8
CVSSv3
CVE-2020-3594
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by providing craft...
Cisco Sd-wan
7.8
CVSSv3
CVE-2020-3595
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root group on the underlying operating system. The vulnerability is due to incorrect permissions being set when the affected command is executed. An attacker could...
Cisco Sd-wan
7.8
CVSSv3
CVE-2020-3600
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local malicious user to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient security controls on the CLI. An attacker could exploit this vulnerability by usi...
Cisco Sd-wan
5.4
CVSSv3
CVE-2020-3468
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct SQL injection attacks on an affected system. The vulnerability exists because the web-based management interface improperly valida...
Cisco Sd-wan Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »