Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vulnerabilities and exploits
(subscribe to this query)
8.4
CVSSv3
CVE-2019-1950
A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, local malicious user to gain unauthorized access to an affected device. The vulnerability is due to the existence of default credentials within the default configuration of an affected device. An atta...
Cisco Ios Xe
7.5
CVSSv3
CVE-2020-3369
A vulnerability in the deep packet inspection (DPI) engine of Cisco SD-WAN vEdge Routers could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper processing of FTP traffic. An at...
Cisco Sd-wan Firmware 19.2.0
Cisco Sd-wan Firmware 19.2.1
Cisco Sd-wan Firmware 19.2.097
Cisco Sd-wan Firmware 19.2.098
Cisco Vedge Cloud Router -
6.4
CVSSv3
CVE-2020-3587
A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user. The vulnerability exists because the web-based management interface does n...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.3.1
6.1
CVSSv3
CVE-2020-3579
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability exists because the web-based management i...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.3.1
5.4
CVSSv3
CVE-2020-3536
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability exists because the web-based management int...
Cisco Sd-wan
Cisco Sd-wan 20.3.1
10
CVSSv3
CVE-2020-14701
Vulnerability in the Oracle SD-WAN Aware product of Oracle Communications Applications (component: User Interface). The supported version that is affected is 8.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle SD...
Oracle Sd-wan Aware 8.2
2 Articles
8
CVSSv3
CVE-2019-1647
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, adjacent malicious user to bypass authentication and have direct unauthorized access to other vSmart containers. The vulnerability is due to an insecure default configuration of the affected system. An att...
Cisco Sd-wan
Cisco Vsmart Controller -
6.5
CVSSv3
CVE-2020-3385
A vulnerability in the deep packet inspection (DPI) engine of Cisco SD-WAN vEdge Routers could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on an affected system. The vulnerability is due to insufficient handling of malformed pack...
Cisco Sd-wan Firmware
Cisco Vedge Cloud Router -
7.3
CVSSv3
CVE-2020-3405
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to gain read and write access to information that is stored on an affected system. The vulnerability is due to improper handling of XML External Entity (XXE) entries...
Cisco Sd-wan Firmware
5.4
CVSSv3
CVE-2020-3406
A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability exists because the web-based management...
Cisco Sd-wan Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »