Lucene search
+L

7 matches found

vulncheck_kev
vulncheck_kev
added 2026/03/05 12:0 a.m.4 views

VulnCheck KEV: CVE-2026-20122

A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to overwrite arbitrary files on the local file system. To exploit this vulnerability, the attacker must have valid read-only credentials with API access on the affected system. This...

5.4CVSS6AI score0.07016EPSS
In wildExploits0References2
euvd
euvd
added 2026/02/25 6:31 p.m.9 views

EUVD-2026-8673

A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to overwrite arbitrary files on the local file system. To exploit this vulnerability, the attacker must have valid read-only credentials with API access on the affected system. This...

5.4CVSS5.8AI score0.07016EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/02/25 4:14 p.m.3 views

CVE-2026-20122

A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to overwrite arbitrary files on the local file system. To exploit this vulnerability, the attacker must have valid read-only credentials with API access on the affected system. This...

5.4CVSS5.8AI score0.07016EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2026/02/25 4:14 p.m.52 views

CVE-2026-20122 Cisco Catalyst SD-WAN Manager Arbitrary File Overwrite Vulnerability

A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to overwrite arbitrary files on the local file system. To exploit this vulnerability, the attacker must have valid read-only credentials with API access on the affected system. This...

5.4CVSS0.07016EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/02/25 12:0 a.m.10 views

PT-2026-21952

Name of the Vulnerable Software and Affected Versions Cisco Catalyst SD-WAN Manager affected versions not specified Description An issue in the API of Cisco Catalyst SD-WAN Manager, specifically within the Data Collection Agent DCA service, results from improper file handling and the incorrect us...

7.5CVSS7.5AI score0.07016EPSS
Exploits0References63
bdu_fstec
bdu_fstec
added 2020/02/03 12:0 a.m.5 views

The vulnerability of the user interface of the programmatically defined Cisco SD-WAN network allows a hacker to execute arbitrary commands with user privileges from the vmanage system within the vulnerable system.

The vulnerability of the programmable user interface in Cisco SD-WAN networks is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with privileges as the vmanage user on the vulnerable system...

6.5CVSS6.2AI score0.02453EPSS
Exploits0References2Affected Software1
osv
osv
added 2020/01/26 5:15 a.m.4 views

CVE-2019-12629

A vulnerability in the WebUI of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject and execute arbitrary commands with vmanage user privileges on an affected system. The vulnerability is due to insufficient input validation of data parameters for certain fields in t...

7.2CVSS6.1AI score0.02453EPSS
Exploits0References1
Rows per page
Query Builder