Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2021-1589
A vulnerability in the disaster recovery feature of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to gain unauthorized access to user credentials. This vulnerability exists because access to API endpoints is not properly restricted. An attacker...
Cisco Sd-wan
6.4
CVSSv2
CVE-2021-1619
A vulnerability in the authentication, authorization, and accounting (AAA) function of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to bypass NETCONF or RESTCONF authentication and do either of the following: Install, manipulate, or delete the confi...
Cisco Ios Xe 16.6.1
Cisco Ios Xe 16.4.1
Cisco Ios Xe 16.3.1
Cisco Ios Xe 16.3.1a
Cisco Ios Xe 16.3.2
Cisco Ios Xe 16.3.3
Cisco Ios Xe 16.5.1
Cisco Ios Xe 16.5.1a
Cisco Ios Xe 16.3.4
Cisco Ios Xe 16.5.1b
Cisco Ios Xe 16.4.2
Cisco Ios Xe 16.3.5b
Cisco Ios Xe 16.3.6
Cisco Ios Xe 16.6.3
Cisco Ios Xe 16.8.1
Cisco Ios Xe 16.7.1
Cisco Ios Xe 16.6.2
Cisco Ios Xe 16.9.1
Cisco Ios Xe 16.3.5
Cisco Ios Xe 16.5.2
Cisco Ios Xe 16.8.1a
Cisco Ios Xe 16.8.1s
4
CVSSv2
CVE-2021-34712
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct cypher query language injection attacks on an affected system. This vulnerability is due to insufficient input validation by the w...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.6
Cisco Catalyst Sd-wan Manager
Cisco Catalyst Sd-wan Manager 20.5
7.2
CVSSv2
CVE-2021-34726
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to inject arbitrary commands to be executed with root-level privileges on the underlying operating system of an affected device. This vulnerability is due to insufficient input ...
Cisco Sd-wan
6.6
CVSSv2
CVE-2021-1612
A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local malicious user to overwrite arbitrary files on the local system. This vulnerability is due to improper access controls on files within the local file system. An attacker could exploit this...
Cisco Sd-wan
6.9
CVSSv2
CVE-2021-34723
A vulnerability in a specific CLI command that is run on Cisco IOS XE SD-WAN Software could allow an authenticated, local malicious user to overwrite arbitrary files in the configuration database of an affected device. This vulnerability is due to insufficient validation of speci...
Cisco Ios Xe 17.3.1a
6.6
CVSSv2
CVE-2021-34724
A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local malicious user to elevate privileges and execute arbitrary code on the underlying operating system as the root user. An attacker must be authenticated on an affected device as a PRIV15 use...
Cisco Ios Xe Sd-wan
7.2
CVSSv2
CVE-2021-34725
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local malicious user to inject arbitrary commands to be executed with root-level privileges on the underlying operating system. This vulnerability is due to insufficient input validation on c...
Cisco Ios Xe Sd-wan
10
CVSSv2
CVE-2021-34727
A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote malicious user to cause a buffer overflow on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes traffic. An a...
Cisco Ios Xe Sd-wan -
7.2
CVSSv2
CVE-2021-34729
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software and Cisco IOS XE Software could allow an authenticated, local malicious user to execute arbitrary commands with elevated privileges on an affected device. This vulnerability is due to insufficient validation of arguments ...
Cisco Ios Xe Sd-wan
Cisco Ios Xe
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »