Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-15387
A vulnerability in the Cisco SD-WAN Solution could allow an unauthenticated, remote malicious user to bypass certificate validation on an affected device. The vulnerability is due to improper certificate validation. An attacker could exploit this vulnerability by supplying a syst...
Cisco Sd-wan 18.3.0
Cisco Sd-wan
7.2
CVSSv2
CVE-2022-20716
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to gain escalated privileges. This vulnerability is due to improper access control on files within the affected system. A local attacker could exploit this vulnerability by modi...
Cisco Sd-wan Vbond Orchestrator -
Cisco Sd-wan Vedge Router -
Cisco Sd-wan Solution -
Cisco Sd-wan Vedge Cloud -
Cisco Sd-wan Vsmart Controller Software -
Cisco Catalyst Sd-wan Manager -
Cisco Sd-wan
7.2
CVSSv2
CVE-2021-34725
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local malicious user to inject arbitrary commands to be executed with root-level privileges on the underlying operating system. This vulnerability is due to insufficient input validation on c...
Cisco Ios Xe Sd-wan
7.2
CVSSv2
CVE-2021-34726
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to inject arbitrary commands to be executed with root-level privileges on the underlying operating system of an affected device. This vulnerability is due to insufficient input ...
Cisco Sd-wan
7.2
CVSSv2
CVE-2021-34729
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software and Cisco IOS XE Software could allow an authenticated, local malicious user to execute arbitrary commands with elevated privileges on an affected device. This vulnerability is due to insufficient validation of arguments ...
Cisco Ios Xe Sd-wan
Cisco Ios Xe
7.2
CVSSv2
CVE-2021-1528
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to gain elevated privileges on an affected system. This vulnerability exists because the affected software does not properly restrict access to privileged processes. An attacker...
Cisco Sd-wan Vbond Orchestrator
Cisco Catalyst Sd-wan Manager
Cisco Vsmart Controller
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Vedge Cloud Firmware
7.2
CVSSv2
CVE-2021-1480
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote malicious user to execute arbitrary code or allow an authenticated, local malicious user to gain escalated privileges on an affected system. For more information about these vulnerabi...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
1 Github repository
7.2
CVSSv2
CVE-2021-1137
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote malicious user to execute arbitrary code or allow an authenticated, local malicious user to gain escalated privileges on an affected system. For more information about these vulnerabi...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
7.2
CVSSv2
CVE-2021-1371
A vulnerability in the role-based access control of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker with read-only privileges to obtain administrative privileges by using the console port when the device is in the default SD-WAN configuration. This vulne...
Cisco Ios Xe Sd-wan 17.2.0
7.2
CVSSv2
CVE-2021-1382
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local malicious user to inject arbitrary commands to be executed with root privileges on the underlying operating system. This vulnerability is due to insufficient input validation on certain...
Cisco Ios Xe
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-25525
CVE-2024-4652
CVE-2024-1438
CVE-2024-4671
CVE-2024-34351
arbitrary
CVE-2024-4650
SQL injection
overflow
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »