Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco sd-wan vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2020-14606
Vulnerability in the Oracle SD-WAN Edge product of Oracle Communications Applications (component: User Interface). Supported versions that are affected are 8.2 and 9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Ora...
Oracle Sd-wan Edge 9.0
Oracle Sd-wan Edge 8.2
2 Articles
NA
CVE-2022-20655
A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient validation of a process argument on an affected device. An attacker coul...
6.5
CVSSv3
CVE-2022-20735
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficient CSRF protections for...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.7
6.5
CVSSv3
CVE-2022-20747
A vulnerability in the History API of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to gain access to sensitive information on an affected system. This vulnerability is due to insufficient API authorization checking on the underlying operating ...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.7
6
CVSSv3
CVE-2023-20098
A vulnerability in the CLI of Cisco SDWAN vManage Software could allow an authenticated, local malicious user to delete arbitrary files. This vulnerability is due to improper filtering of directory traversal character sequences within system commands. An attacker with administrat...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.11
7.8
CVSSv3
CVE-2019-1625
A vulnerability in the CLI of Cisco SD-WAN Solution could allow an authenticated, local malicious user to elevate lower-level privileges to the root user on an affected device. The vulnerability is due to insufficient authorization enforcement. An attacker could exploit this vuln...
Cisco Sd-wan Firmware
Cisco Sd-wan Firmware 18.4.0
1 Article
6.1
CVSSv3
CVE-2020-3579
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability exists because the web-based management i...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.3.1
6.4
CVSSv3
CVE-2020-3587
A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user. The vulnerability exists because the web-based management interface does n...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.3.1
8.4
CVSSv3
CVE-2019-1950
A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, local malicious user to gain unauthorized access to an affected device. The vulnerability is due to the existence of default credentials within the default configuration of an affected device. An atta...
Cisco Ios Xe
8
CVSSv3
CVE-2019-1647
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, adjacent malicious user to bypass authentication and have direct unauthorized access to other vSmart containers. The vulnerability is due to an insecure default configuration of the affected system. An att...
Cisco Vsmart Controller -
Cisco Sd-wan
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »