Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vmanage vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-20252
A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an unauthenticated, remote malicious user to gain unauthorized access to the application as an arbitrary user. This vulnerability is due to improper authent...
Cisco Catalyst Sd-wan Manager 20.9.3.2
Cisco Catalyst Sd-wan Manager 20.11.1.2
4.3
CVSSv3
CVE-2021-1515
A vulnerability in Cisco SD-WAN vManage Software could allow an unauthenticated, adjacent malicious user to gain access to sensitive information. This vulnerability is due to improper access controls on API endpoints when Cisco SD-WAN vManage Software is running in multi-tenant m...
Cisco Sd-wan Vmanage
7.8
CVSSv3
CVE-2019-1646
A vulnerability in the local CLI of the Cisco SD-WAN Solution could allow an authenticated, local malicious user to escalate privileges and modify device configuration files. The vulnerability exists because user input is not properly sanitized for certain commands at the CLI. An...
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Vbond Orchestrator -
Cisco Sd-wan
Cisco Vmanage Network Management -
Cisco Vsmart Controller -
7.8
CVSSv3
CVE-2019-1648
A vulnerability in the user group configuration of the Cisco SD-WAN Solution could allow an authenticated, local malicious user to gain elevated privileges on an affected device. The vulnerability is due to a failure to properly validate certain parameters included within the gro...
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Sd-wan
Cisco Vsmart Controller -
Cisco Vmanage Network Management -
Cisco Vbond Orchestrator -
8.8
CVSSv3
CVE-2019-1650
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote malicious user to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affe...
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Sd-wan
Cisco Vmanage Network Management -
Cisco Vbond Orchestrator -
Cisco Vsmart Controller -
8.8
CVSSv3
CVE-2020-3381
A vulnerability in the web management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct directory traversal attacks and obtain read and write access to sensitive files on a targeted system. The vulnerability is due to a lack...
Cisco Sd-wan Firmware
7.8
CVSSv3
CVE-2020-3388
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local malicious user to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerabil...
Cisco Sd-wan Firmware
6.5
CVSSv3
CVE-2020-3437
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to read arbitrary files on the underlying filesystem of the device. The vulnerability is due to insufficient file scope limiting. An attacker...
Cisco Sd-wan Firmware
8.8
CVSSv3
CVE-2021-1302
Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to bypass authorization and modify the configuration of an affected system, gain access to sensitive information, and view informati...
Cisco Catalyst Sd-wan Manager -
1 Article
6.5
CVSSv3
CVE-2021-1304
Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to bypass authorization and modify the configuration of an affected system, gain access to sensitive information, and view informati...
Cisco Catalyst Sd-wan Manager -
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »