Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sd-wan vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-8273
Privilege escalation of an authenticated user to root in Citrix SD-WAN center versions prior to 11.2.2, 11.1.2b and 10.2.8.
Citrix Sd-wan
9.8
CVSSv3
CVE-2020-8271
Unauthenticated remote code execution with root privileges in Citrix SD-WAN Center versions prior to 11.2.2, 11.1.2b and 10.2.8
Citrix Sd-wan
4.4
CVSSv3
CVE-2021-1233
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to access sensitive information on an affected device. The vulnerability is due to insufficient input validation of requests that are sent to the iperf tool. An attacker could e...
Cisco Sd-wan Firmware
Cisco Sd-wan Vbond Orchestrator -
Cisco Catalyst Sd-wan Manager -
9.1
CVSSv3
CVE-2023-20214
A vulnerability in the request authentication validation for the REST API of Cisco SD-WAN vManage software could allow an unauthenticated, remote malicious user to gain read permissions or limited write permissions to the configuration of an affected Cisco SD-WAN vManage instance...
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager 20.6.3.3
Cisco Catalyst Sd-wan Manager
1 Article
5.5
CVSSv3
CVE-2021-1235
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local malicious user to read sensitive database files on an affected system. The vulnerability is due to insufficient user authorization. An attacker could exploit this vulnerability by acce...
Cisco Sd-wan Vmanage
9.8
CVSSv3
CVE-2017-6316
Citrix NetScaler SD-WAN devices through v9.1.2.26.561201 allow remote malicious users to execute arbitrary shell commands as root via a CGISESSID cookie. On CloudBridge (the former name of NetScaler SD-WAN) devices, the cookie name was CAKEPHP rather than CGISESSID.
Citrix Netscaler Sd-wan
2 EDB exploits
6.7
CVSSv3
CVE-2021-34726
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to inject arbitrary commands to be executed with root-level privileges on the underlying operating system of an affected device. This vulnerability is due to insufficient input ...
Cisco Sd-wan
5.5
CVSSv3
CVE-2021-1546
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to access sensitive information. This vulnerability is due to improper protections on file access through the CLI. An attacker could exploit this vulnerability by running a CLI ...
Cisco Sd-wan Vbond Orchestrator
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
Cisco Vsmart Controller Firmware
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Vedge Cloud Firmware
7.8
CVSSv3
CVE-2021-1514
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to inject arbitrary commands to be executed with Administrator privileges on the underlying operating system. This vulnerability is due to insufficient input validation on certa...
Cisco Sd-wan Vbond Orchestrator
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
Cisco Vsmart Controller Firmware
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 100b Firmware
Cisco Vedge 100m Firmware
Cisco Vedge 100wm Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Vedge-100b Firmware
Cisco Vedge Cloud Firmware
6
CVSSv3
CVE-2021-1512
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local malicious user to overwrite arbitrary files in the underlying file system of an affected system. This vulnerability is due to insufficient validation of the user-supplied input parameters of a...
Cisco Sd-wan Vbond Orchestrator -
Cisco Sd-wan Vmanage
Cisco Catalyst Sd-wan Manager
Cisco Vsmart Controller Firmware -
Cisco Vedge 100 Firmware -
Cisco Vedge 1000 Firmware -
Cisco Vedge 100b Firmware -
Cisco Vedge 100m Firmware -
Cisco Vedge 100wm Firmware -
Cisco Vedge 2000 Firmware -
Cisco Vedge 5000 Firmware -
Cisco Vedge-100b Firmware -
Cisco Vedge Cloud Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »