CVE-2025-20339 Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability

A vulnerability in the access control list ACL processing of IPv4 packets of Cisco SD-WAN vEdge Software could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to the improper enforcement of the implicit deny all at the end of a configured ACL. An...

CVE-2025-20187

A vulnerability in the application data endpoints of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to improper validation of requests to APIs. An attacker could...

Cisco SD-WAN vManage 授权问题漏洞

Cisco SD-WAN vManage is a highly customizable dashboard from Cisco, Inc. that simplifies and automates the deployment, configuration, management, and operation of Cisco SD-WAN. Cisco SD-WAN vManage suffers from an input validation error vulnerability that stems from insufficient request validatio...

Cisco Software-Defined Application Visibility and Control on Cisco vManage Static Username and Password (cisco-sa-sdavc-ZA5fpXX2)

According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. - A vulnerability in authentication mechanism of Cisco Software-Defined Application Visibility and Control SD-AVC on Cisco vManage could allow an unauthenticated, remote attacker to access the GU...

Cisco SD-WAN vManage Software 安全漏洞

Cisco SD-WAN Solution is a set of network extension solutions from Cisco, of which vManage is the console. vManage Software for Cisco SD-WAN is vulnerable to an information disclosure vulnerability that could be exploited by an attacker to read arbitrary files on the underlying file system of the...

Cisco SD-WAN Software 安全漏洞

Cisco SD-WAN is a highly secure cloud-scale architecture that is open, programmable, and scalable from Cisco USA. A security vulnerability exists in the Cisco SD-WAN Software that allows an authenticated, local attacker to gain elevated privileges on an affected system...

Cisco SD-WAN vManage 安全漏洞

Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. An information disclosure vulnerability exists in the cluster management interface of Cisco SD-WAN vManage versions prior to 20.5.1. The...

Cisco SD-WAN vManage 后置链接漏洞

Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. Cisco SD-WAN vManage suffers from a backlink vulnerability that stems from an insufficient file range restriction. An attacker could exploit...

Cisco SD-WAN vManage 代码问题漏洞

Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. A code issue vulnerability exists in Cisco SD-WAN vManage Software, which could be exploited by an attacker to read or write files in an...

Cisco SD-WAN vManage 输入验证错误漏洞

Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. Cisco SD-WAN vManage Software has an input validation error vulnerability that originates as a result of insufficient authorization checks. ...

Cisco SD-WAN vManage Software SQL注入漏洞

Cisco SD-WAN Solution is a suite of network extension solutions from Cisco, of which vManage is the console. A SQL injection vulnerability exists in the Web management interface of Cisco SD-WAN vManage versions prior to 19.2.3. The vulnerability stems from the Web management interface not properl...

PT-2021-1864 · Cisco · Cisco Sd-Wan

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN products affected versions not specified Description: The issue is related to errors in processing IP traffic in Cisco SD-WAN products. An unauthenticated, remote attacker could exploit this to execute arbitrary code with root...

Cisco SD-WAN Solution Resource Management Error Vulnerability

Cisco SD-WAN Solution is a set of network extension solutions from Cisco. A resource management error vulnerability exists in Cisco SD-WAN Solution versions prior to 17.2.7 and prior to 18.3.0. A remote attacker could exploit this vulnerability to cause a denial of service with the help of a...

Cisco SD-WAN Solution vManage Command Injection Vulnerability

Cisco SD-WAN Solution is a set of network extension solutions from Cisco. vManage is a network management system. A command injection vulnerability exists in the Web UI in Cisco SD-WAN Solution vManage Release prior to 19.2.2, which stems from the Web UI failing to properly validate SQL values. A...

CVE-2019-1626

A vulnerability in the vManage web-based UI Web UI of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to gain elevated privileges on an affected vManage device. The vulnerability is due to a failure to properly authorize certain user actions in the device configuration. An...

Cisco SD-WAN Solution Privilege Permission and Access Control Issues Vulnerability (CNVD-2019-25711)

Cisco SD-WAN Solution is a suite of network extension solutions from Cisco. the CLI is a command line interface. A privilege-granting and access control issue vulnerability exists in the CLI in Cisco SD-WAN Solution versions 18.3.6, 18.4.1, and 19.1.0, which can be exploited by a local attacker t...

CVE-2018-0344

A vulnerability in the vManage dashboard for the configuration and management service of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject and execute arbitrary commands with vmanage user privileges on an affected system. The vulnerability is due to insufficient...