A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local malicious user to overwrite arbitrary files in the underlying file system. This vulnerability is due to insufficient validation of the parameters of a specific CLI command. An attacker could exploit this vulnerability by issuing that command with specific parameters. A successful exploit could allow the malicious user to overwrite the content of any arbitrary file that resides on the underlying host file system.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cisco ios xe 16.12.1 |
||
cisco ios xe 16.11.1 |
||
cisco ios xe 16.11.1a |
||
cisco ios xe 16.12.1c |
||
cisco ios xe 16.12.1t |
||
cisco ios xe 16.11.2 |
||
cisco ios xe 16.12.1s |
||
cisco ios xe 16.12.1a |
||
cisco ios xe 16.12.1x |
||
cisco ios xe 16.11.1c |
||
cisco ios xe 16.11.1b |
||
cisco ios xe 16.11.1s |
||
cisco ios xe 16.12.1w |
||
cisco ios xe 16.12.1y |
||
cisco ios xe 16.12.2 |
||
cisco ios xe 16.12.2a |
||
cisco ios xe 16.12.3 |
||
cisco ios xe 17.2.1 |
||
cisco ios xe 16.12.2t |
||
cisco ios xe 16.12.2s |
||
cisco ios xe 16.12.3a |
||
cisco ios xe 17.2.1a |
||
cisco ios xe 17.2.1v |
||
cisco ios xe 16.12.1z |
||
cisco ios xe 16.12.3s |
||
cisco ios xe 17.2.1r |
||
cisco ios xe 16.12.1za |
Vulmon