Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2019-1625
A vulnerability in the CLI of Cisco SD-WAN Solution could allow an authenticated, local malicious user to elevate lower-level privileges to the root user on an affected device. The vulnerability is due to insufficient authorization enforcement. An attacker could exploit this vuln...
Cisco Sd-wan Firmware
Cisco Sd-wan Firmware 18.4.0
1 Article
7.8
CVSSv3
CVE-2019-1646
A vulnerability in the local CLI of the Cisco SD-WAN Solution could allow an authenticated, local malicious user to escalate privileges and modify device configuration files. The vulnerability exists because user input is not properly sanitized for certain commands at the CLI. An...
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Vbond Orchestrator -
Cisco Sd-wan
Cisco Vmanage Network Management -
Cisco Vsmart Controller -
7.8
CVSSv3
CVE-2019-1648
A vulnerability in the user group configuration of the Cisco SD-WAN Solution could allow an authenticated, local malicious user to gain elevated privileges on an affected device. The vulnerability is due to a failure to properly validate certain parameters included within the gro...
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Sd-wan
Cisco Vsmart Controller -
Cisco Vmanage Network Management -
Cisco Vbond Orchestrator -
7.8
CVSSv3
CVE-2019-1636
A vulnerability in the Cisco Webex Teams client, formerly Cisco Spark, could allow an malicious user to execute arbitrary commands on a targeted system. This vulnerability is due to unsafe search paths used by the application URI that is defined in Windows operating systems. An a...
Cisco Webex Teams 3.0.4533
1 Article
7.8
CVSSv3
CVE-2018-0433
A vulnerability in the command-line interface (CLI) in the Cisco SD-WAN Solution could allow an authenticated, local malicious user to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could ex...
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Vbond Orchestrator -
Cisco Vsmart Controller -
Cisco Vedge Cloud Router Platform -
Cisco Vmanage Network Management System -
7.8
CVSSv3
CVE-2018-0347
A vulnerability in the Zero Touch Provisioning (ZTP) subsystem of the Cisco SD-WAN Solution could allow an authenticated, local malicious user to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attack...
Cisco Vmanage Network Management -
Cisco Vsmart Controller -
Cisco Vbond Orchestrator -
Cisco Vedge-plus -
Cisco Vedge-pro -
Cisco Vedge-100 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge-1000 Firmware
Cisco Vedge-2000 Firmware
Cisco Vedge-5000 Firmware
7.8
CVSSv3
CVE-2018-0351
A vulnerability in the command-line tcpdump utility in the Cisco SD-WAN Solution could allow an authenticated, local malicious user to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could ex...
Cisco Vmanage Network Management -
Cisco Vbond Orchestrator -
Cisco Vedge-pro -
Cisco Vsmart Controller -
Cisco Vedge-plus -
Cisco Vedge-100 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge-1000 Firmware
Cisco Vedge-2000 Firmware
Cisco Vedge-5000 Firmware
7.5
CVSSv3
CVE-2023-20034
Vulnerability in the Elasticsearch database used in the of Cisco SD-WAN vManage software could allow an unauthenticated, remote malicious user to access the Elasticsearch configuration database of an affected device with the privileges of the elasticsearch user. These vulnerabili...
Cisco Sd-wan
Cisco Sd-wan 20.7
Cisco Sd-wan 20.6
7.5
CVSSv3
CVE-2023-20226
A vulnerability in Application Quality of Experience (AppQoE) and Unified Threat Defense (UTD) on Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This...
Cisco Ios Xe 17.7.1
Cisco Ios Xe 17.7.1a
Cisco Ios Xe 17.7.2
Cisco Ios Xe 17.8.1
Cisco Ios Xe 17.8.1a
Cisco Ios Xe 17.9.1
Cisco Ios Xe 17.9.1a
Cisco Ios Xe 17.9.2
Cisco Ios Xe 17.9.2a
Cisco Ios Xe 17.10.1
Cisco Ios Xe 17.10.1a
7.5
CVSSv3
CVE-2023-20262
A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote malicious user to cause a process crash, resulting in a DoS condition for SSH access only. This vulnerability does not prevent the system from continuing to function, and we...
Cisco Sd-wan Vmanage 20.12
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »