Ios Xe Sd-wan@* Security Vulnerabilities and Issues — Ios Xe Sd-wan@* CVE List

Lucene search

CiscoIos Xe Sd-wan*

7 matches found

CVE•added 2021/10/21 3:15 a.m.•137 views

CVE-2021-1529

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation by the system CLI. An attacker could exploit this vulnerability by authenticating to ...

7.8CVSS7.8AI score0.00064EPSS

CVE•added 2021/09/23 3:15 a.m.•68 views

CVE-2021-1619

A vulnerability in the authentication, authorization, and accounting (AAA) function of Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass NETCONF or RESTCONF authentication and do either of the following: Install, manipulate, or delete the configuration of an affected d...

9.8CVSS9.8AI score0.01446EPSS

CVE•added 2021/03/24 8:15 p.m.•61 views

CVE-2021-1383

Multiple vulnerabilities in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the underlying operating system with root privileges. These vulnerabilities are due to insufficient input validation of certain CLI commands. An attacker could exploit these vu...

7.2CVSS6.3AI score0.00156EPSS

CVE•added 2021/03/24 8:15 p.m.•48 views

CVE-2021-1432

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected device as a low-privileged user to exploit this vulnerability...

7.3CVSS7.3AI score0.00061EPSS

CVE•added 2021/09/23 3:15 a.m.•48 views

CVE-2021-34725

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands to be executed with root-level privileges on the underlying operating system. This vulnerability is due to insufficient input validation on certain CLI commands. An a...

7.2CVSS6.6AI score0.00136EPSS

CVE•added 2021/09/23 3:15 a.m.•46 views

CVE-2021-34729

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software and Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary commands with elevated privileges on an affected device. This vulnerability is due to insufficient validation of arguments passed to certain CLI com...

7.2CVSS6.7AI score0.00184EPSS

CVE•added 2021/09/23 3:15 a.m.•39 views

CVE-2021-34724

A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local attacker to elevate privileges and execute arbitrary code on the underlying operating system as the root user. An attacker must be authenticated on an affected device as a PRIV15 user. This vulnerability is ...

6.6CVSS6.2AI score0.00125EPSS