CVE-2021-34700

A vulnerability in the CLI interface of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read arbitrary files on the underlying file system of an affected system. This vulnerability exists because access to sensitive information on an affected system is not sufficient...

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to elevate their privileges.

The vulnerability of the vManage web interface of the software-defined Cisco SD-WAN network is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to enhance their privileges remotely...

Cisco SD-WAN vManage 安全漏洞

Cisco SD-WAN vManage is a software from Cisco that provides software-defined networking capabilities. The software provides a way to virtualize the network. An information disclosure vulnerability exists in the cluster management interface of Cisco SD-WAN vManage versions prior to 20.5.1. The...

The vulnerability of the command-line interface (CLI) of the vManage web interface for programmatically defined Cisco SD-WAN networks allows a attacker to compromise the integrity of protected information.

The vulnerability of the command-line interface CLI of the vManage web interface for the Cisco SD-WAN network is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to compromise the integrity of the protected information...

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to elevate their privileges.

The vulnerability in the vManage web interface of the Cisco SD-WAN software exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the vManage web interface of the Cisco SD-WAN program-defined network is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to compromise the integrity of protected information.

The vulnerability in the vManage web interface of the Cisco SD-WAN software-defined network is related to errors in handling HTTP requests. Exploiting this vulnerability allows a malicious actor to compromise the integrity of protected information...

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to perform a cross-site scripting attack.

The vulnerability in the vManage web interface of the Cisco SD-WAN programmatically defined network is related to the lack of protective measures taken for the website structure. Exploiting this vulnerability could allow a malicious actor to perform a cross-site scripting attack remotely...

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious actor to gain unauthorized access to protected information and to modify, add, or delete data.

The vulnerability in the vManage web interface of the Cisco SD-WAN programmatically defined network is related to errors in restricting XML links to external objects. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information and to modify, add, or...

Cisco SD-WAN vManage Software Path Traversal Vulnerability

Cisco SD-WAN vManage Software is a management software for SD-WAN Software Defined Wide Area Network solutions from Cisco. A path traversal vulnerability exists in the Web management interface in Cisco SD-WAN vManage Software versions 19.2.2 and earlier, which stems from the program failing to...

The vulnerability in the vManage web interface of the programmatically defined Cisco SD-WAN network allows a attacker to trigger a service failure.

The vulnerability in the vManage web interface of the Cisco SD-WAN program-defined network is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to execute arbitrary code.

The vulnerability in the vManage web interface of the Cisco SD-WAN program-defined network exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code with root privileges...

CVE-2020-3388

A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by authenticating t...

CVE-2020-3378

A vulnerability in the web-based management interface for Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to impact the integrity of an affected system by executing arbitrary SQL queries. The vulnerability is due to insufficient validation of user-supplied input. An...

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a attacker to execute arbitrary SQL queries.

The vulnerability in the vManage web interface of the Cisco SD-WAN software-defined networking system is related to input validation errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

CVE-2019-12619

A vulnerability in the web interface for Cisco SD-WAN Solution vManage could allow an authenticated, remote attacker to impact the integrity of an affected system by executing arbitrary SQL queries. The vulnerability is due to insufficient validation of user-supplied input. An attacker could...