23 matches found
CVE-2022-20735
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system. This vulnerability is due to insufficient CSRF protections for the web-based management...
Cisco SD-WAN vManage Software 安全漏洞
Cisco SD-WAN vManage Software is a management software for SD-WAN Software Defined Wide Area Network solutions from Cisco. A security vulnerability exists in Cisco SD-WAN vManage Software that stems from insufficient input validation in the web management interface. The vulnerability could allow ...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to elevate their privileges.
The vulnerability of the vManage web interface for the programmatically defined Cisco SD-WAN network is related to privilege management errors. Exploiting this vulnerability could allow a malicious actor to increase their privileges remotely...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious individual to gain unauthorized access to protected information.
The vulnerability in the vManage web interface of the Cisco SD-WAN software-defined network is related to authentication process errors. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information by sending specially crafted HTTP requests...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to execute arbitrary commands or cause service interruptions.
The vulnerability of the vManage web interface of the Cisco SD-WAN software-defined network is related to the implementation or modification of arguments. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands or cause service failures...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious individual to gain unauthorized access to protected information.
The vulnerability of the vManage web interface of the Cisco SD-WAN software-defined network is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious individual to gain unauthorized access to protected information.
The vulnerability of the vManage web interface of the Cisco SD-WAN software-defined network is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability in the vManage web interface of the programmatically defined Cisco SD-WAN network allows a attacker to execute arbitrary commands with elevated privileges.
The vulnerability of the vManage web interface of the Cisco SD-WAN software-defined network is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with elevated privileges from a remote location...
The vulnerability of the SSH web interface of the vManage program-defined network in Cisco SD-WAN allows a intruder to gain unauthorized access to protected information.
The vulnerability of the SSH web interface of the vManage program-defined network in Cisco SD-WAN exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to execute arbitrary SQL queries.
The vulnerability in the vManage web interface of the Cisco SD-WAN programmatically defined network is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...
Cisco SD-WAN vManage Software 输入验证错误漏洞
Cisco SD-WAN Solution is a suite of network extension solutions from Cisco, of which vManage is the console. An authorization bypass vulnerability exists in the web management interface of Cisco SD-WAN vManage. The vulnerability stems from insufficient authorization checking of user account...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious individual to gain unauthorized access to protected information.
The vulnerability in the vManage web interface of the Cisco SD-WAN programmatically defined network is related to an incorrect path name limitation for accessing the directory. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
CVE-2020-3591
A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. The vulnerability exists because the web-based management interface does not...
The vulnerability in the vManage web interface of the programmatically defined Cisco SD-WAN network allows a intruder to gain unauthorized access to protected information.
The vulnerability in the vManage web interface of the Cisco SD-WAN program-defined network is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
The vulnerability in the vManage web interface of the programmatically defined Cisco SD-WAN network allows a attacker to modify records in certain database tables.
The vulnerability in the vManage web interface of the Cisco SD-WAN program-defined network relates to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to modify records in certain database tables remotely...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to execute arbitrary SQL queries.
The vulnerability in the vManage web interface of the Cisco SD-WAN software exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...
The vulnerability in the vManage web interface of the programmatically defined Cisco SD-WAN network allows a attacker to disclose sensitive information.
The vulnerability in the vManage web interface of Cisco SD-WAN is due to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...
The vulnerability in the vManage web interface of the programmatically defined Cisco SD-WAN network allows a attacker to read and write arbitrary files in the target system.
The vulnerability in the vManage web interface of the Cisco SD-WAN program-defined network is related to incorrect path name restrictions for access-limited directories. Exploiting this vulnerability could allow a malicious actor to read and write arbitrary files on the target system remotely...
CVE-2020-3381
A vulnerability in the web management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct directory traversal attacks and obtain read and write access to sensitive files on a targeted system. The vulnerability is due to a lack of proper validation o...
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to execute arbitrary SQL queries.
The vulnerability in the vManage web interface of the Cisco SD-WAN programmatically defined network is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...