48 matches found
Cisco SD-WAN 安全漏洞
Cisco SD-WAN is a highly secure cloud-scale architecture that is open, programmable, and scalable from Cisco USA. A security vulnerability exists in Cisco SD-WAN that results from improper protection of file access through the CLI. The vulnerability could allow an authenticated local attacker to...
多款Cisco产品资源管理错误漏洞
Cisco IOS and others are products of Cisco, Inc.Cisco IOS is a set of operating systems developed for its network devices.IOS XE is a set of operating systems developed for its network devices.SD-WAN Software is one of the software-defined WAN software.Cisco IOS XE Software is an operating system...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious individual to gain unauthorized access to protected information.
The vulnerability in the vManage web interface of the Cisco SD-WAN programmatically defined network is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information through...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to execute arbitrary commands or cause service interruptions.
The vulnerability of the vManage web interface of the Cisco SD-WAN software-defined network is related to the implementation or modification of arguments. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands or cause service failures...
Cisco SD-WAN vManage 输入验证错误漏洞
Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. Cisco SD-WAN vManage has an input validation error vulnerability that stems from an incomplete boundary check on data provided to the vDaemo...
CVE-2021-1235
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read sensitive database files on an affected system. The vulnerability is due to insufficient user authorization. An attacker could exploit this vulnerability by accessing the vshell of an...
多款Cisco产品命令注入漏洞
Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. A command injection vulnerability exists in the CLI utility tcpdump in Cisco SD-WAN Software. The vulnerability stems from the program not...
Cisco SD-WAN Input Validation Error Vulnerability
Cisco SD-WAN is a highly secure cloud-scale architecture that is open, programmable, and scalable from Cisco USA. Cisco SD-WAN suffers from an input validation error vulnerability that allows an unauthenticated, remote attacker to execute an attack on an affected device...
Vmware VMWare SD-WAN Orchestrator Authorization Issues Vulnerability
Vmware VMWare SD-WAN Orchestrator is a software from Vmware that orchestrates network data flows in a software-defined network architecture. The software provides Web pages to visually manage users, gateways, and authentication. An authorization issue vulnerability exists in VMware SD-WAN...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious individual to gain unauthorized access to protected information.
The vulnerability in the vManage web interface of the Cisco SD-WAN programmatically defined network is related to an incorrect path name limitation for accessing the directory. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
PT-2020-4618 · Cisco · Cisco Sd-Wan Vmanage
Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN vManage Software affected versions not specified Description: A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct a cross-site...
PT-2020-4710 · Cisco +1 · Cisco Ftd +5
Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense FTD versions affected versions not specified Cisco SD-WAN versions affected versions not specified Cisco IOS XE versions affected versions not specified Cisco Meraki versions affected versions not specified...
The vulnerability of the programmatically defined Cisco SD-WAN network, related to the use of strictly encrypted credentials, allows a perpetrator to elevate their privileges to the root level.
The vulnerability of the programmatically defined Cisco SD-WAN network is related to the use of strictly encrypted credentials. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root level...
The vulnerability in the vManage web interface of the programmatically defined Cisco SD-WAN network allows a attacker to modify records in certain database tables.
The vulnerability in the vManage web interface of the Cisco SD-WAN program-defined network relates to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to modify records in certain database tables remotely...
The vulnerability in the vManage web interface of the programmatically defined Cisco SD-WAN network allows a attacker to trigger a service failure.
The vulnerability in the vManage web interface of the Cisco SD-WAN program-defined network is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...
CVE-2020-3388
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by authenticating t...
PT-2020-3123 · Cisco · Cisco Sd-Wan Vmanage
Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN vManage Software affected versions not specified Description: The issue is related to insufficient input validation in the CLI of the software, allowing an authenticated, local attacker to inject arbitrary commands that are...
CVE-2020-8198
Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in Stored Cross-Site Scripting XSS...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to perform a cross-site scripting attack.
The vulnerability in the vManage web interface of the Cisco SD-WAN programmatically defined network is related to the lack of protective measures taken for the website structure. Exploiting this vulnerability could allow a malicious actor to perform a cross-site scripting attack remotely...
The vulnerability of the programmatically defined Cisco SD-WAN network, which arises due to insufficient validation of input data, allows a hacker to elevate their privileges to the root level.
The vulnerability of the programmatically defined Cisco SD-WAN network exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root level...