Cisco Catalyst SD-WAN Manager is an open and secure management console for cloud-level architectures. A local file inclusion vulnerability exists in the Cisco Catalyst SD-WAN Manager web UI, which can be exploited by a remote attacker to submit a special request that can read the contents of a system file in the application context.