Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-1349
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct Cypher query language injection attacks on an affected system. The vulnerability is due to insufficient input validation by the we...
Cisco Sd-wan Vmanage
8.8
CVSSv3
CVE-2019-1624
A vulnerability in the vManage web-based UI (Web UI) in the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could ...
Cisco Sd-wan
8.8
CVSSv3
CVE-2019-1626
A vulnerability in the vManage web-based UI (Web UI) of the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to gain elevated privileges on an affected vManage device. The vulnerability is due to a failure to properly authorize certain user actions in the...
Cisco Sd-wan Firmware
7.1
CVSSv3
CVE-2020-3264
A vulnerability in Cisco SD-WAN Solution software could allow an authenticated, local malicious user to cause a buffer overflow on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted traffi...
Cisco Sd-wan Firmware
Cisco Sd-wan Firmware 20.1.0
Cisco Sd-wan Firmware 20.3.0
1 Article
5.5
CVSSv3
CVE-2022-20717
A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local malicious user to cause an affected device to run out of memory, resulting in a denial of service (DoS) condition. This vulnerability is due to insufficient memory management ...
Cisco Sd-wan Vedge Router
Cisco Sd-wan Vedge Router 20.7
5.4
CVSSv3
CVE-2020-3468
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct SQL injection attacks on an affected system. The vulnerability exists because the web-based management interface improperly valida...
Cisco Sd-wan Firmware
8.8
CVSSv3
CVE-2023-20254
A vulnerability in the session management system of the Cisco Catalyst SD-WAN Manager multi-tenant feature could allow an authenticated, remote malicious user to access another tenant that is being managed by the same Cisco Catalyst SD-WAN Manager instance. This vulnerability req...
Cisco Sd-wan Manager
8.8
CVSSv3
CVE-2020-3381
A vulnerability in the web management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct directory traversal attacks and obtain read and write access to sensitive files on a targeted system. The vulnerability is due to a lack...
Cisco Sd-wan Firmware
7.8
CVSSv3
CVE-2020-3388
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local malicious user to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerabil...
Cisco Sd-wan Firmware
8.1
CVSSv3
CVE-2023-20113
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficient CSRF protections for...
Cisco Sd-wan 20.9.0
Cisco Sd-wan 20.8.0
Cisco Sd-wan
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »