Ios Xe Sd-wan Security Vulnerabilities and Issues — Ios Xe Sd-wan CVE List

Lucene search

CiscoIos Xe Sd-wan

10 matches found

CVE•added 2021/10/21 3:15 a.m.•137 views

CVE-2021-1529

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation by the system CLI. An attacker could exploit this vulnerability by authenticating to ...

7.8CVSS7.8AI score0.00061EPSS

CVE•added 2023/03/23 5:15 p.m.•101 views

CVE-2023-20035

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with elevated privileges. This vulnerability is due to insufficient input validation by the system CLI. An attacker with privileges to run commands could exploit thi...

7.8CVSS8AI score0.00043EPSS

CVE•added 2021/03/24 8:15 p.m.•61 views

CVE-2021-1383

Multiple vulnerabilities in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the underlying operating system with root privileges. These vulnerabilities are due to insufficient input validation of certain CLI commands. An attacker could exploit these vu...

7.2CVSS6.3AI score0.0017EPSS

CVE•added 2022/09/30 7:15 p.m.•60 views

CVE-2022-20850

A vulnerability in the CLI of stand-alone Cisco IOS XE SD-WAN Software and Cisco SD-WAN Software could allow an authenticated, local attacker to delete arbitrary files from the file system of an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit t...

7.1CVSS6AI score0.00027EPSS

CVE•added 2021/03/24 8:15 p.m.•57 views

CVE-2021-1454

7.2CVSS6.3AI score0.00108EPSS

CVE•added 2021/03/24 9:15 p.m.•56 views

CVE-2021-1371

A vulnerability in the role-based access control of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker with read-only privileges to obtain administrative privileges by using the console port when the device is in the default SD-WAN configuration. This vulnerability occurs bec...

7.2CVSS6.5AI score0.00028EPSS

CVE•added 2020/06/03 6:15 p.m.•48 views

CVE-2020-3216

A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, physical attacker to bypass authentication and gain unrestricted access to the root shell of an affected device. The vulnerability exists because the affected software has insufficient authentication mechanisms for cert...

7.2CVSS6.8AI score0.0009EPSS

CVE•added 2021/03/24 8:15 p.m.•48 views

CVE-2021-1432

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected device as a low-privileged user to exploit this vulnerability...

7.3CVSS7.3AI score0.0005EPSS

CVE•added 2021/09/23 3:15 a.m.•48 views

CVE-2021-34725

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands to be executed with root-level privileges on the underlying operating system. This vulnerability is due to insufficient input validation on certain CLI commands. An a...

7.2CVSS6.6AI score0.00136EPSS

CVE•added 2021/09/23 3:15 a.m.•46 views

CVE-2021-34729

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software and Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary commands with elevated privileges on an affected device. This vulnerability is due to insufficient validation of arguments passed to certain CLI com...

7.2CVSS6.7AI score0.00146EPSS