Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vulnerabilities and exploits
(subscribe to this query)
8.4
CVSSv3
CVE-2019-1950
A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, local malicious user to gain unauthorized access to an affected device. The vulnerability is due to the existence of default credentials within the default configuration of an affected device. An atta...
Cisco Ios Xe
8.1
CVSSv3
CVE-2020-26064
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to gain read and write access to information that is stored on an affected system. The vulnerability is due to improper handling of XML External Entity (XXE) entries...
Cisco Catalyst Sd-wan Manager 17.2.6
Cisco Catalyst Sd-wan Manager 17.2.7
Cisco Catalyst Sd-wan Manager 17.2.5
Cisco Catalyst Sd-wan Manager 18.3.1.1
Cisco Catalyst Sd-wan Manager 18.3.3.1
Cisco Catalyst Sd-wan Manager 18.3.3
Cisco Catalyst Sd-wan Manager 18.3.1
Cisco Catalyst Sd-wan Manager 18.3.0
Cisco Catalyst Sd-wan Manager 18.4.0.1
Cisco Catalyst Sd-wan Manager 18.4.3
Cisco Catalyst Sd-wan Manager 18.4.0
Cisco Catalyst Sd-wan Manager 18.4.1
Cisco Catalyst Sd-wan Manager 19.2.0
Cisco Catalyst Sd-wan Manager 19.2.097
Cisco Catalyst Sd-wan Manager 19.2.31
Cisco Catalyst Sd-wan Manager 19.2.929
Cisco Catalyst Sd-wan Manager 20.1.1.1
Cisco Catalyst Sd-wan Manager 20.1.12
Cisco Catalyst Sd-wan Manager 20.3.1
Cisco Catalyst Sd-wan Manager 17.2.8
Cisco Catalyst Sd-wan Manager 17.2.9
Cisco Catalyst Sd-wan Manager 17.2.10
8.1
CVSSv3
CVE-2023-20113
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficient CSRF protections for...
Cisco Sd-wan 20.9.0
Cisco Sd-wan 20.8.0
Cisco Sd-wan
8.1
CVSSv3
CVE-2021-1433
A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote malicious user to cause a buffer overflow on an affected device. This vulnerability is due to insufficient bounds checking when the device processes traffic. An attacker ...
Cisco Ios Xe 16.12.1
Cisco Ios Xe 16.12.1c
Cisco Ios Xe 16.12.1t
Cisco Ios Xe 16.12.1s
Cisco Ios Xe 16.12.1a
Cisco Ios Xe 16.12.1x
Cisco Ios Xe 16.12.1w
Cisco Ios Xe 16.12.1y
Cisco Ios Xe 16.12.2
Cisco Ios Xe 16.12.2a
Cisco Ios Xe 16.12.3
Cisco Ios Xe 17.2.1
Cisco Ios Xe 16.12.2t
Cisco Ios Xe 16.12.2s
Cisco Ios Xe 16.12.3a
Cisco Ios Xe 17.2.1a
Cisco Ios Xe 3.15.2xbs
Cisco Ios Xe 17.2.1v
Cisco Ios Xe 16.12.1z
Cisco Ios Xe 16.12.3s
Cisco Ios Xe 3.15.1xbs
Cisco Ios Xe 17.2.1r
8.1
CVSSv3
CVE-2019-16012
A vulnerability in the web UI of Cisco SD-WAN Solution vManage software could allow an authenticated, remote malicious user to conduct SQL injection attacks on an affected system. The vulnerability exists because the web UI improperly validates SQL values. An attacker could explo...
Cisco Sd-wan Firmware
1 Article
8
CVSSv3
CVE-2019-1647
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, adjacent malicious user to bypass authentication and have direct unauthorized access to other vSmart containers. The vulnerability is due to an insecure default configuration of the affected system. An att...
Cisco Sd-wan
Cisco Vsmart Controller -
7.8
CVSSv3
CVE-2023-20035
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local malicious user to execute arbitrary commands with elevated privileges. This vulnerability is due to insufficient input validation by the system CLI. An attacker with privileges to run c...
Cisco Ios Xe Sd-wan -
7.8
CVSSv3
CVE-2022-20818
Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to gain elevated privileges. These vulnerabilities are due to improper access controls on commands within the application CLI. An attacker could exploit these vulnerabi...
Cisco Sd-wan Vbond Orchestrator
Cisco Sd-wan Vmanage
Cisco Sd-wan Vsmart Controller
Cisco Sd-wan
1 Github repository
7.8
CVSSv3
CVE-2022-20775
Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to gain elevated privileges. These vulnerabilities are due to improper access controls on commands within the application CLI. An attacker could exploit these vulnerabi...
Cisco Sd-wan Vbond Orchestrator
Cisco Sd-wan Vbond Orchestrator 20.8
Cisco Sd-wan Vsmart Controller 20.8
Cisco Sd-wan Vsmart Controller
Cisco Catalyst Sd-wan Manager 20.8
Cisco Catalyst Sd-wan Manager
Cisco Sd-wan
Cisco Sd-wan 20.8
7.8
CVSSv3
CVE-2022-20716
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to gain escalated privileges. This vulnerability is due to improper access control on files within the affected system. A local attacker could exploit this vulnerability by modi...
Cisco Sd-wan Vbond Orchestrator -
Cisco Sd-wan Vedge Router -
Cisco Sd-wan Solution -
Cisco Sd-wan Vedge Cloud -
Cisco Sd-wan Vsmart Controller Software -
Cisco Catalyst Sd-wan Manager -
Cisco Sd-wan
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »