Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vmanage vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2020-3265
A vulnerability in Cisco SD-WAN Solution software could allow an authenticated, local malicious user to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sendin...
Cisco Sd-wan Firmware
Cisco Sd-wan Firmware 20.1.0
1 Article
3.3
CVSSv2
CVE-2021-1515
A vulnerability in Cisco SD-WAN vManage Software could allow an unauthenticated, adjacent malicious user to gain access to sensitive information. This vulnerability is due to improper access controls on API endpoints when Cisco SD-WAN vManage Software is running in multi-tenant m...
Cisco Sd-wan Vmanage
4
CVSSv2
CVE-2019-12619
A vulnerability in the web interface for Cisco SD-WAN Solution vManage could allow an authenticated, remote malicious user to impact the integrity of an affected system by executing arbitrary SQL queries. The vulnerability is due to insufficient validation of user-supplied input....
Cisco Sd-wan Firmware
4
CVSSv2
CVE-2020-3401
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct path traversal attacks and obtain read access to sensitive files on an affected system. The vulnerability is due to insufficient v...
Cisco Sd-wan Firmware
4.9
CVSSv2
CVE-2020-3405
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to gain read and write access to information that is stored on an affected system. The vulnerability is due to improper handling of XML External Entity (XXE) entries...
Cisco Sd-wan Firmware
3.5
CVSSv2
CVE-2020-3406
A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability exists because the web-based management...
Cisco Sd-wan Firmware
4
CVSSv2
CVE-2020-27128
A vulnerability in the application data endpoints of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to write arbitrary files to an affected system. The vulnerability is due to improper validation of requests to APIs. An attacker could exploit th...
Cisco Sd-wan
9
CVSSv2
CVE-2019-12629
A vulnerability in the WebUI of the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to inject and execute arbitrary commands with vmanage user privileges on an affected system. The vulnerability is due to insufficient input validation of data parameters ...
Cisco Sd-wan Firmware
9
CVSSv2
CVE-2020-3387
A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to execute code with root privileges on an affected system. The vulnerability is due to insufficient input sanitization during user authentication processing. An attacker could ex...
Cisco Sd-wan Firmware
3.5
CVSSv2
CVE-2020-3536
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability exists because the web-based management int...
Cisco Sd-wan 20.3.1
Cisco Sd-wan
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »