CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information. TRUSTED...

5.8CVSS6.7AI score0.00294EPSS

Exploits0References3

NVD•added 2025/09/24 5:15 p.m.•7 views

CVE-2025-20339

A vulnerability in the access control list ACL processing of IPv4 packets of Cisco SD-WAN vEdge Software could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to the improper enforcement of the implicit deny all at the end of a configured ACL. An...

5.8CVSS0.00294EPSS

Exploits0References1

Cvelist•added 2025/09/24 4:40 p.m.•6 views

CVE-2025-20339 Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability

5.8CVSS0.00294EPSS

Exploits0References1

CNNVD•added 2025/09/24 12:0 a.m.•1 views

Cisco SD-WAN vEdge 访问控制错误漏洞

The Cisco SD-WAN vEdge is a router from Cisco USA. The Cisco SD-WAN vEdge suffers from an access control error vulnerability that stems from improper handling of IPv4 packet access control lists, which could lead to a remote attacker bypassing configured ACLs...

5.8CVSS6.6AI score0.00294EPSS

Exploits0References2

BDU FSTEC•added 2025/01/10 12:0 a.m.•5 views

The vulnerability of the UDP packet verification mechanism in microprogramming software for Cisco SD-WAN vEdge allows a attacker to trigger a service failure.

The vulnerability of the UDP packet verification mechanism in Cisco SD-WAN vEdge microprogramming software lies in the fact that the operation results are stored outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially...

6.1CVSS5.7AI score0.00227EPSS

Exploits0References3Affected Software2

Cvelist•added 2024/11/18 4:5 p.m.•20 views

CVE-2020-26071 Cisco SD-WAN vEdge Arbitrary File Creation Vulnerability

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to create or overwrite arbitrary files on an affected device, which could result in a denial of service DoS condition. The vulnerability is due to insufficient input validation for specific commands. ...

8.4CVSS0.0019EPSS

Exploits0References1

NVD•added 2024/09/25 5:15 p.m.•10 views

CVE-2024-20496

A vulnerability in the UDP packet validation code of Cisco SD-WAN vEdge Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected system. This vulnerability is due to incorrect handling of a specific type of malformed UDP packet. An...

6.1CVSS0.00227EPSS

Exploits0References1

CVE•added 2024/09/25 4:20 p.m.•56 views

CVE-2024-20496

CVE-2024-20496 affects Cisco SD-WAN vEdge Software. The root cause is improper handling in the UDP packet validation code for certain malformed UDP packets, enabling an unauthenticated, adjacent attacker to reboot the device and cause DoS. The impact listed is a denial of service with device rebo...

6.1CVSS6.3AI score0.00227EPSS

Exploits0References1

Cvelist•added 2024/09/25 4:20 p.m.•13 views

CVE-2024-20496 Cisco SD-WAN vEdge Routers Denial of Service Vulnerability

6.1CVSS0.00227EPSS

Exploits0References1

Cisco•added 2024/09/25 4:0 p.m.•12 views

Cisco SD-WAN vEdge Software UDP Packet Validation Denial of Service Vulnerability

6.1CVSS6.4AI score0.00227EPSS

Exploits0References1

Tenable Nessus•added 2024/09/25 12:0 a.m.•10 views

Cisco SD-WAN vEdge Software UDP Packet Validation DoS (cisco-sa-sdw-vedos-KqFfhps3)

According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. - A vulnerability in the UDP packet validation code of Cisco SD-WAN vEdge Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected...

6.1CVSS5.7AI score0.00227EPSS

Exploits0References4

Positive Technologies•added 2023/11/08 12:0 a.m.•3 views

PT-2023-9828 · Cisco · Cisco Sd-Wan Vedge

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN vEdge Software affected versions not specified Description: The issue is related to a flaw in the UDP packet validation code, which could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on a...

6.1CVSS7AI score0.00227EPSS

Exploits0References7

BDU FSTEC•added 2022/12/24 12:0 a.m.•6 views

The vulnerability of the command-line interface of microprogramming software for Cisco SD-WAN vBond Orchestrator, Cisco SD-WAN vEdge Cloud Routers, Cisco SD-WAN vEdge Routers, Cisco SD-WAN vSmart Controller, and the centralized network management system Cisco SD-WAN vManage arises from incorrect path name restrictions related to restricted access directories. This vulnerability allows attackers to create or re-record critical files.

7.8CVSS7.2AI score0.00593EPSS

Exploits1References3Affected Software4

Positive Technologies•added 2022/09/29 12:0 a.m.•6 views

PT-2022-6016 · Cisco · Cisco Sd-Wan Vsmart Controller +5

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN Software versions affected versions not specified Cisco SD-WAN vBond Orchestrator versions affected versions not specified Cisco SD-WAN vEdge Cloud Routers versions affected versions not specified Cisco SD-WAN vEdge Routers...

7.8CVSS7.8AI score0.00593EPSS

Exploits1References7

NVD•added 2022/04/15 3:15 p.m.•16 views

CVE-2022-20717

A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service DoS condition. This vulnerability is due to insufficient memory management when an affected device...

5.5CVSS0.00194EPSS

Exploits0References1