A vulnerability in the web management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to conduct directory traversal attacks and obtain read and write access to sensitive files on a targeted system. The vulnerability is due to a lack of proper validation of files that are uploaded to an affected device. An attacker could exploit this vulnerability by uploading a crafted file to an affected system. An exploit could allow the malicious user to view or modify arbitrary files on the targeted system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco sd-wan_firmware |