Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sd-wan vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2023-37433
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilit...
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
Arubanetworks Edgeconnect Sd-wan Orchestrator
8.1
CVSSv3
CVE-2023-37434
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilit...
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
Arubanetworks Edgeconnect Sd-wan Orchestrator
6.1
CVSSv3
CVE-2023-37439
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilit...
Arubanetworks Edgeconnect Sd-wan Orchestrator
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
7.8
CVSSv3
CVE-2021-1262
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated malicious user to perform command injection attacks against an affected device, which could allow the malicious user to take certain actions with root privileges on the device. For more information abo...
Cisco Sd-wan Firmware
Cisco Sd-wan Firmware 20.4
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
1 Article
6.7
CVSSv3
CVE-2022-20930
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to overwrite and possibly corrupt files on an affected system. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by inject...
Cisco Sd-wan Vbond Orchestrator 20.8
Cisco Sd-wan Vsmart Controller 20.8
Cisco Sd-wan Vsmart Controller
Cisco Sd-wan Vmanage
Cisco Sd-wan Vbond Orchestrator
Cisco Sd-wan Vbond Orchestrator 20.9
Cisco Sd-wan Vsmart Controller 20.9
Cisco Catalyst Sd-wan Manager 20.9
Cisco Catalyst Sd-wan Manager 20.8
Cisco Sd-wan
Cisco Sd-wan 20.8
Cisco Sd-wan 20.9
7.8
CVSSv3
CVE-2020-3180
A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, local malicious user to access an affected device by using an account that has a default, static password. This account has root privileges. The vulnerability exists because the affected software ha...
Cisco Sd-wan
NA
CVE-2020-26071
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to create or overwrite arbitrary files on an affected device, which could result in a denial of service (DoS) condition. The vulnerability is due to insufficient input validation for ...
7.5
CVSSv3
CVE-2023-20034
Vulnerability in the Elasticsearch database used in the of Cisco SD-WAN vManage software could allow an unauthenticated, remote malicious user to access the Elasticsearch configuration database of an affected device with the privileges of the elasticsearch user. These vulnerabili...
Cisco Sd-wan
Cisco Sd-wan 20.7
Cisco Sd-wan 20.6
8.8
CVSSv3
CVE-2021-1299
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated malicious user to perform command injection attacks against an affected device, which could allow the malicious user to take certain actions with root privileges on the device. For more information abo...
Cisco Sd-wan Firmware 18.2.0
Cisco Sd-wan Firmware 18.3.0
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.6
Cisco Sd-wan Firmware 19.2.3
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Firmware 20.1.0
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
1 Article
7.8
CVSSv3
CVE-2021-1260
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated malicious user to perform command injection attacks against an affected device, which could allow the malicious user to take certain actions with root privileges on the device. For more information abo...
Cisco Sd-wan Firmware 18.2.0
Cisco Sd-wan Firmware 18.3.0
Cisco Sd-wan Firmware 18.3.8
Cisco Sd-wan Firmware 18.4.6
Cisco Sd-wan Firmware 19.2.3
Cisco Sd-wan Firmware 19.2.99
Cisco Sd-wan Firmware 20.1.0
Cisco Sd-wan Vsmart Controller Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »