3 matches found
Cisco SD-WAN vManage Cypher Query Language Injection (cisco-sa-vmanage-cql-inject-72EhnUc)
According to its self-reported version, Cisco SD-WAN vManage is affected by a information disclosure vulnerability due to insufficient input validation by the web-based management interface. An authenticated, remote attacker can exploit this, via crafted HTTP requests, to obtain sensitive...
CVE-2021-1349
creationtimestamp| type| source ---|---|--- 2021-01-20 22:27:34+00:00| seen| https://t.me/cibsecurity/22443...
CVE-2021-1349
CVE-2021-1349 affects Cisco SD-WAN vManage web-based management interface. Root cause: insufficient input validation allowing Cypher query language injection via crafted HTTP requests. Impact: authenticated, remote attacker could obtain sensitive information. Affected product: Cisco SD-WAN vManag...