2 matches found
CVE-2021-1233
Cisco SD-WAN Software faces an information-disclosure vulnerability in its CLI, caused by insufficient input validation of requests to the iperf tool. An authenticated, local attacker could craft a request to iperf to read arbitrary files from the device filesystem. Affected product: Cisco SD-WAN...
CVE-2021-1233 Cisco SD-WAN Information Disclosure Vulnerability
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to access sensitive information on an affected device. The vulnerability is due to insufficient input validation of requests that are sent to the iperf tool. An attacker could exploit this vulnerabili...