48 matches found
The vulnerability of the programmatically defined Cisco SD-WAN network, which arises due to insufficient validation of input data, allows a hacker to elevate their privileges to the root level.
The vulnerability of the programmatically defined Cisco SD-WAN network exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root level...
Cisco SD-WAN Solution vManage Command Injection Vulnerability
Cisco SD-WAN Solution is a set of network extension solutions from Cisco. vManage is a network management system. A command injection vulnerability exists in the Web UI in Cisco SD-WAN Solution vManage Release prior to 19.2.2, which stems from the Web UI failing to properly validate SQL values. A...
ONAP SDNC Operating System Command Injection Vulnerability (CNVD-2020-28056)
The ONAP SDNC is a network-defined network controller from the ONAP program. ONAP SDNC suffers from an operating system command injection vulnerability. An attacker can exploit this vulnerability to execute arbitrary commands with the help of a specially crafted 'filename' parameter...
Silver Peak Systems EdgeConnect SD-WAN Input Validation Error Vulnerability
Silver Peak Systems EdgeConnect SD-WAN is a suite of software-defined, wide-area networking platforms from Silver Peak Systems, USA. The platform provides path conditioning, application classification, routing and virtual WAN overlay. An input validation error vulnerability exists in Silver Peak...
Schweitzer Engineering Laboratories Software-Defined Network Switch Detection
Binary data 755350.prm...
The vulnerability of the Command Line Interface (CLI) of Cisco SD-WAN-enabled software-defined networks allows attackers to elevate their privileges and modify device configuration files.
The vulnerability of the Command Line Interface CLI of Cisco SD-WAN software-defined networks is related to access control violations. Exploiting this vulnerability can allow attackers to enhance their privileges and modify device configuration files by sending specially crafted commands to the...
CVE-2018-0346
A vulnerability in the Zero Touch Provisioning service of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to incorrect bounds checks for certain values in packets that are sent to...
Remote access in a software defined world
When I first ventured into technology, I wish someone gave me a heads-up about the bevy of acronyms to remember. It feels like every day a new acronym related to technology is formed. It's hard enough remembering names within my family. During Thanksgiving with a full house, I struggle to remembe...